Summary:

Bleeping Computer reports that email notifications are being sent to customers that a hacker stole and leaked credentials that were stolen from what Oracle described as "two obsolete servers.”

In their email to customers Oracle added that its Oracle Cloud servers were not compromised, and this incident did not impact customer data and cloud services.

We were able to verify that this email is legitimate and ISAC members have received it.

Notable Messaging from the Alleged Email Notifications:

"Oracle would like to state unequivocally that the Oracle Cloud—also known as Oracle Cloud Infrastructure or OCI—has NOT experienced a security breach," Oracle says in a customer notification shared with BleepingComputer.

"No OCI customer environment has been penetrated. No OCI customer data has been viewed or stolen. No OCI service has been interrupted or compromised in any way,"

"A hacker did access and publish user names from two obsolete servers that were never a part of OCI. The hacker did not expose usable passwords because the passwords on those two servers were either encrypted and/or hashed. Therefore the hacker was not able to access any customer environments or customer data."

Suggested Corrections:

Oracle customers should await an official response from Oracle and follow any mitigation and remediation recommendations from the company.

Source:
https://www.bleepingcomputer.com/ne...-obsolete-servers-hacked-denies-cloud-breach/