In this news:
Skip to main content
Tech Radar Pro
Tech Radar Gaming
Tech Radar Pro
TechRadar the business technology experts
Search TechRadar
View Profile
België (Nederlands)
Deutschland
North America
US (English)
Australasia
New Zealand
Expert Insights
Website builders
Web hosting
Best web hosting
Best website builder
Best office chairs
Expert Insights
Oracle denies data breach after hacker claims to hold six million records
Sead Fadilpašić
24 March 2025
"No Oracle Cloud customers experienced a breach or lost any data," the company says
When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works.
(Image credit: Oracle)
A threat actor is offering a database for sale, alleging it came from Oracle
The archive contains encrypted SSO passwords and more
Oracle denied being breached or losing data
Oracle has denied suffering a cyberattack and a data breach, following claims from a hacker to have stolen millions of records from company servers.
In mid-March 2025, a threat actor with the alias rose87168 released 6 million data records, claiming they were seized from Oracle’s Cloud federated SSO login servers. The archive posted on the dark web included a sample database, LDAP information, and a list of companies.
Perhaps unsurprisingly, Oracle was having none of it, issuing a statement declaring, "There has been no breach of Oracle Cloud. The published credentials are not for the Oracle Cloud. No Oracle Cloud customers experienced a breach or lost any data."
You may like
Orange confirms it suffered breach after hacker leaks company documents
HPE investigating claims that hacker breached developer environments, source code
Encrypted SSO passwords
In the meantime, rose87168 took the archive for sale, in exchange for either an undisclosed sum of money, or zero-day exploits.
The threat actor claims the data includes encrypted SSO passwords, Java keystore (JKS) files, key files, enterprise manager JPS keys, and more.
"The SSO passwords are encrypted, they can be decrypted with the available files. also LDAP hashed password can be cracked," rose87168 said.
"I'll list the domains of all the companies in this leak. Companies can pay a specific amount to remove their employees' information from the list before it's sold."
Are you a pro? Subscribe to our newsletter
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
Contact me with news and offers from other Future brandsReceive email from us on behalf of our trusted partners or sponsorsBy submitting your information you agree to the Terms & Conditions and Privacy Policy and are aged 16 or over.
Before listing the stolen archive for sale, the threat actor apparently asked Oracle for 100,000 XMR (the Monero cryptocurrency), but the company also demanded “all information needed for fix and patch,” and since rose87168 did not provide, the negotiations broke down..
To prove the stolen files were legitimate, the threat actor gave BleepingComputer a URL for Internet Archive, which shows that they uploaded a .txt file containing their email address to server.
The publication reached out to Oracle for an explanation - we have also contacted the company for comment.
You might also like
Several ServiceNow flaws are reportedly being linked together to attack companies and organizations
We've rounded up the best password managers
Take a look at our guide to the best authenticator app
Sead Fadilpašić
Social Links Navigation
Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.
You must confirm your public display name before commenting
Please logout and then login again, you will then be prompted to enter your display name.
Orange confirms it suffered breach after hacker leaks company documents
HPE investigating claims that hacker breached developer environments, source code
Millions of hotel guest reservations leaked in Otelier data breach
NTT admits hackers accessed details of almost 18,000 corporate customers in cyberattack
Atos now says its systems weren't hit by a ransomware attack after all
Hackers claim Orange attack, threaten to leak 1TB of data
Latest in Security
IBM to provide platform for flagship cyber skills programme for girls
Oracle denies data breach after hacker claims to hold six million records
North Korea unveils new military unit targeting AI attacks
US government warns agencies to make sure their backups are safe from NAKIVO security issue
This top WordPress plugin could be hiding a worrying security flaw, so be on your guard
Veeam urges users to patch security issues which could allow backup hacks
Latest in News
Tesla is still taking deposits on its long overdue Roadster, despite promising it would arrive in 2020
Samsung promises to repair soundbars bricked by its disastrous software update for free – but it'll probably involve shipping
Gmail is adding a new Gemini AI tool to help smarten up your work emails
More DJI Mavic 4 Pro leaks seemingly reveal launch date, price and key features of the triple camera drone – here's what to expect
Here's how Android 16 will upgrade the screen unlocking process on your Pixel
Thousands of coffee lovers warned to stop using their espresso machines immediately after reports of burns and lacerations
More about security
IBM to provide platform for flagship cyber skills programme for girls
North Korea unveils new military unit targeting AI attacks
SteamOS is about to change handheld gaming PCs as HP finally considers ditching Windows 11
See more latest
Most Popular
SteamOS is about to change handheld gaming PCs as HP finally considers ditching Windows 11
Tesla is still taking deposits on its long overdue Roadster, despite promising it would arrive in 2020
More DJI Mavic 4 Pro leaks seemingly reveal launch date, price and key features of the triple camera drone – here's what to expect
I'm a qualified barista, and De'Longhi's latest espresso machine could be this year's best budget buy for coffee lovers
Thousands of coffee lovers warned to stop using their espresso machines immediately after reports of burns and lacerations
Samsung promises to repair soundbars bricked by its disastrous software update for free – but it'll probably involve shipping
Minecraft developer rejects generative AI, 'it's important that it makes us feel happy to create as humans'
Nvidia rumors suggest it's working on two affordable GPUs to spoil AMD's party
Gmail is adding a new Gemini AI tool to help smarten up your work emails
AirPods with cameras for Visual Intelligence could be one of the best personal safety features Apple has ever planned – here's why
LATEST ARTICLES
Netgear Meural Canvas II review: a huge-scale digital photo frame that displays exquisite detail
Tesla is still taking deposits on its long overdue Roadster, despite promising it would arrive in 2020
Andrew Koji reveals Gangs of London season 3's new mysterious assassin is like 'the human Terminator' in the Sky Original series
More DJI Mavic 4 Pro leaks seemingly reveal launch date, price and key features of the triple camera drone – here's what to expect
I'm a qualified barista, and De'Longhi's latest espresso machine could be this year's best budget buy for coffee lovers
TechRadar is part of Future US Inc, an international media group and leading digital publisher. Visit our corporate site.
Contact Future's experts
Terms and conditions
Privacy policy
Cookies policy
Advertise with us
Web notifications
Accessibility Statement
Future US, Inc. Full 7th Floor, 130 West 42nd Street,
Please login or signup to comment
Please wait...
.png)
