Oracle Acknowledges Security Incident with Obsolete Servers
Oracle has officially confirmed that credentials were stolen from two outdated servers, according to recent email notifications sent to its customers. Despite this, the tech giant reassures that its current cloud infrastructure, Oracle Cloud, remains secure and unaffected by the incident.
Oracle Cloud Remains Secure
Oracle emphasizes the integrity of its cloud services in the face of the breach, asserting, “Oracle Cloud Infrastructure – has NOT experienced a security breach”. They further clarified:
- No penetration into customer environments in OCI
- No unauthorized access to customer data
- All OCI services remain fully functional and secure
Detailed Insights on the Incident
The credentials leaked were linked to obsolete servers not associated with Oracle Cloud Infrastructure. These servers housed encrypted and/or hashed passwords, rendering them unusable for the hacker. Oracle urges customers to reach out to Oracle Support or their account managers for further inquiries.
Response to Data Breach Claims
Initial reports of the hacking surfaced in March when credentials appeared for sale online. Despite accusations, Oracle maintained that the compromised data belonged to a previous generation of its services, known as Oracle Cloud Classic.
Cybersecurity expert Kevin Beaumont criticized Oracle’s specific language, noting, “Oracle is manipulating terminology – but the affected services are indeed managed by them as part of what was previously recognized as cloud services.”
Verification of Breach Notifications
Concerns regarding the legitimacy of breach notifications have been raised, following unclear confirmations about whether the compromised servers were part of Oracle Cloud Classic. Oracle has yet to respond to these inquiries officially.
Further Security Incidents and Customer Reactions
Oracle also faced another breach in January affecting Oracle Health, impacting patient data across several U.S. healthcare facilities. This breach, distinct from the server incidents, involved sensitive patient data.
Oracle customers confirmed the validity of the leaked data, including detailed user information, which contradicts Oracle’s statement denying any breach of Oracle Cloud.
Conclusion and Continued Vigilance
While Oracle assures that the core cloud infrastructure remains untouched, the breaches involving older platforms highlight the ongoing challenges in cybersecurity management. Customers are advised to maintain vigilance and report any suspicious activities linked to their accounts.
Related: Windows 11 April update unexpectedly creates new ‘inetpub’ folder
Last Updated: April 9, 2025
