Oracle Cloud Users Urged to Take Action www.darkreading.com/applicati…

With Oracle not budging from its denial of a breach that a growing number of security experts believe occurred, some are urging the company’s cloud customers to take immediate steps to verify if their data was compromised and to protect against any resulting misuse.

If the breach indeed occurred, the primary concerns include attackers leveraging stolen data to infiltrate cloud environments, escalating privileges to administrative control, and reusing credentials for lateral movement across affected organizations.

Additionally, any exposure of personally identifiable information (PII) and passwords could trigger compliance requirements under statutes like the General Data Protection Regulation (GDPR) and the Health Insurance Portability and Accountability Act (HIPAA) for covered organizations, Trustwave said in its take on the reported incident.