Tag: oracle
-
Oracle plans to power its New Mexico mega datacenter with a 2.45GW fuel cell farm
No sense in OpenAI stressing over its cloud bills if Oracle can’t get the lights on First seen on theregister.com Jump to article: www.theregister.com/2026/04/28/oracle_new_mexico_power_fuel_cell_farm/
-
Capability Deep Dive
The Two Control Gaps Oracle Risk Management Cloud (RMC) Can’t Provide: Mitigation, Monitoring, and Materialized Risk Detection Your Oracle environment will always have some elevated access. The real question is whether you can show it was controlled, monitored, and not misused over time. Problem: Some Oracle risks can’t be removed Some Oracle Segregation of Duties……
-
Are Your Oracle ERP Controls Failing Silently?
When Oracle ERP sits at the center of your business, work on access controls, segregation-of-duties (SoD), and SOX never really stops. Your team has already put in years of effort to design roles, harden environments, and keep Oracle-native controls running smoothly across multi-ledger, multi-business unit operations. The question most leaders are hearing now is different:……
-
Oracle Risk Management Cloud vs SafePaaS: What you should evaluate
IT Security, GRC, and audit teams often ask: “Is Oracle Risk Management Cloud enough for our control model, or do we need an alternative?” This guide answers that question with a practical comparison of what Oracle RMC does well, where SafePaaS can complement Oracle, and where some organizations may choose SafePaaS as an alternative for……
-
Deploying SafePaaS for Oracle ERP Cloud: A 90″‘Day Blueprint to Strengthen Risk Management
This blueprint shows how an Oracle ERP Cloud customer deploys SafePaaS as an independent control layer and how it operates day to day once live. It is designed for complex, audit”‘intensive Oracle Cloud environments with multi”‘entity footprints, connected SaaS applications, recurring external audits, and growing pressure to prove that Oracle”‘generated evidence is complete, accurate, and……
-
Deploying SafePaaS in Oracle E”‘Business Suite: A 90″‘Day Blueprint to Continuous, Independent Control Monitoring
This blueprint shows how a large Oracle E”‘Business Suite (EBS) enterprise deploys SafePaaS as an independent control layer alongside EBS, identity providers, and identity governance and administration (IGA), and how it operates day to day once live. It is designed for complex, audit”‘intensive EBS environments with multiple operating units, sets of books and ledgers, recurring……
-
Deploying SafePaaS in Oracle E”‘Business Suite: A 90″‘Day Blueprint to Continuous, Independent Control Monitoring
This blueprint shows how a large Oracle E”‘Business Suite (EBS) enterprise deploys SafePaaS as an independent control layer alongside EBS, identity providers, and identity governance and administration (IGA), and how it operates day to day once live. It is designed for complex, audit”‘intensive EBS environments with multiple operating units, sets of books and ledgers, recurring……
-
The spaghettified DBMS chart that shows Oracle’s crown is slowly slipping
Tags: oracleChange is glacial, but the direction is clear First seen on theregister.com Jump to article: www.theregister.com/2026/04/21/gartner_bamboozling_dbms_chart_shows/
-
Oracle April 2026 Critical Patch Update Addresses 241 CVEs
Oracle addresses 241 CVEs in its second quarterly update of 2026 with 481 patches, including 34 critical updates. Key takeaways: The second Critical Patch Update (CPU) for 2026 contains fixes for 241 unique CVEs in 481 security updates 34 issues (7.1% of all patches) were assigned a critical severity rating Oracle Communications received the highest…
-
VirtualBox 7.2.8 is out with Linux kernel 7.0 support and crash fixes
Oracle shipped VirtualBox 7.2.8 on April 21, 2026, as a maintenance release covering crashes, networking problems, clipboard issues, and extended Linux kernel compatibility. … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/04/21/virtualbox-7-2-8-released/
-
‘Uncle Larry’s biggest fan’ cut by email in early morning Oracle layoff spree
WARN filings in two states show 1,000+ layoffs, but wider cuts remain unconfirmed First seen on theregister.com Jump to article: www.theregister.com/2026/04/01/laidoff_oracle_workers/
-
Oracle cuts jobs across sales, engineering, security
Big Red declines comment as reports point to layoffs in the thousands First seen on theregister.com Jump to article: www.theregister.com/2026/03/31/oracle_cuts_jobs/
-
How Sasol Reduced Java Costs by 92% While Strengthening Security and Compliance
Learn how Sasol standardized over 150 Java applications on Azul to reduce costs and the fear of Oracle Java audits. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/how-sasol-reduced-java-costs-by-92-while-strengthening-security-and-compliance/
-
How Sasol Reduced Java Costs by 92% While Strengthening Security and Compliance
Learn how Sasol standardized over 150 Java applications on Azul to reduce costs and the fear of Oracle Java audits. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/how-sasol-reduced-java-costs-by-92-while-strengthening-security-and-compliance/
-
How Sasol Reduced Java Costs by 92% While Strengthening Security and Compliance
Learn how Sasol standardized over 150 Java applications on Azul to reduce costs and the fear of Oracle Java audits. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/how-sasol-reduced-java-costs-by-92-while-strengthening-security-and-compliance/
-
Hackers Actively Exploit Critical WebLogic RCE Vulnerabilities in Ongoing Attacks
A maximum-severity vulnerability in Oracle WebLogic Server is facing rapid exploitation in the wild. Tracked as CVE-2026-21962, this unauthenticated Remote Code Execution (RCE) flaw carries a maximum CVSS score of 10.0. According to a recent honeypot study, attackers began weaponizing the flaw on January 22, 2026, the exact day public exploit code was released on…
-
EUVD-2026-13486 / CVE-2026-21992 – Oracle schließt RCE-Schwachstelle in Fusion Middleware
First seen on security-insider.de Jump to article: www.security-insider.de/oracle-kritische-rce-luecke-identity-manager-web-services-manager-a-28d02c8a1a0974a0badc66a15191cf32/
-
Breach Roundup: Tycoon2FA Phishing Platform Rebounds
Tags: 2fa, attack, breach, data, data-breach, healthcare, iran, malware, north-korea, oracle, phishing, ransomware, russiaAlso, Russian Signal Phishing, Iran-Linked Malware, Breaches in Spain and France. This week, Tycoon 2FA, Trio-Tech, messaging app spying and a ransomware broker sentenced. Iran-linked hackers. Mazda disclosed a breach. Oracle patched a flaw. North Korean actors weaponized VS Code, a Spanish port ransomware attack, a French teacher data breach and a healthcare firm victim…
-
Oracle Cloud Infrastructure: The bare metal facts
The Oracle Cloud Infrastructure appears to have more in common with datacentre hosting than with public infrastructure-as-a-service providers First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366640817/Oracle-Cloud-Infrastructure-The-bare-metal-facts
-
Attackers Rapidly Weaponize Critical Oracle WebLogic RCE, Honeypot Study Finds
Attackers rapidly exploited a critical Oracle WebLogic RCE flaw the same day exploit code was released, according to a CloudSEK honeypot study First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/critical-oracle-weblogic-rce/
-
Unbreakable Enterprise Kernel 8.2 ships with confidential computing support, XFS live repair
Many enterprise Linux deployments rely on hardware-level memory isolation to protect sensitive workloads from co-tenants and compromised hypervisors. Oracle’s … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/03/26/oracle-unbreakable-enterprise-kernel-8-2/
-
Emergency Microsoft, Oracle patches point to wider cyber issues
Emergency out-of-band patches from Microsoft and Oracle signal underlying security issues around update cycles and patching, and identity security and zero-trust, says the community First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366640648/Emergency-Microsoft-Oracle-patches-point-to-wider-cyber-issues
-
Oracle Issues Emergency Patch for Critical Flaw Enabling Remote Code Execution
Tags: advisory, cvss, cyber, flaw, identity, oracle, remote-code-execution, service, update, vulnerabilityOracle has released an emergency out”‘of”‘band patch to address a critical vulnerability, tracked as CVE”‘2026″‘21992, that affects two core enterprise products: Oracle Identity Manager and Oracle Web Services Manager. The flaw, disclosed on March 19, 2026, carries a CVSS v3.1 base score of 9.8, placing it in the highest severity category and prompting an urgent…
-
Oracle issues emergency fix for pre-auth RCE in Identity Manager (CVE-2026-21992)
Oracle has released an out-of-band patch for a critical and easily exploitable vulnerability (CVE-2026-21992) in Oracle Identity Manager and Oracle Web Services Manager. The … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/03/23/oracle-emergency-fix-cve-2026-21992/
-
Oracle fixes critical RCE flaw CVE-2026-21992 in Identity Manager
Tags: control, cve, flaw, identity, oracle, rce, remote-code-execution, service, update, vulnerabilityOracle fixed a critical severity flaw, tracked as CVE-2026-21992, enabling unauthenticated remote code execution in Identity Manager. Oracle released security updates to address a critical vulnerability, tracked as CVE-2026-21992 (CVSS score of 9.8), affecting Identity Manager and Web Services Manager. The flaw lets unauthenticated attackers over HTTP take control of Oracle Identity Manager and Web…
-
Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity Manager
Tags: authentication, cve, cvss, exploit, flaw, identity, oracle, rce, remote-code-execution, service, update, vulnerabilityOracle has released security updates to address a critical security flaw impacting Identity Manager and Web Services Manager that could be exploited to achieve remote code execution.The vulnerability, tracked as CVE-2026-21992, carries a CVSS score of 9.8 out of a maximum of 10.0.”This vulnerability is remotely exploitable without authentication,” Oracle said in an advisory. “If…
-
Oracle Fixes High-Severity RCE Vulnerability Affecting Identity and Web Services Platforms
Oracle recently issued an urgent security alert regarding a critical Remote Code Execution (RCE) flaw that impacts both Oracle Identity Manager and Oracle Web Services Manager. Tracked as CVE-2026-21992, this vulnerability allows attackers to compromise systems remotely without requiring any user authentication. Organizations utilizing these affected Fusion Middleware components must act immediately to prevent potential…
-
Oracle pushes emergency fix for critical Identity Manager RCE flaw
Oracle has released an out-of-band security update to fix a critical unauthenticated remote code execution vulnerability in Identity Manager and Web Services Manager tracked as CVE-2026-21992. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/oracle-pushes-emergency-fix-for-critical-identity-manager-rce-flaw/
-
Patch Now: Oracle’s Fusion Middleware Has Critical RCE Flaw
Tags: authentication, data-breach, flaw, identity, oracle, rce, remote-code-execution, service, updateAttackers can execute arbitrary code without authentication if Oracle’s Identity or Web Services Managers are exposed to the Web. First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/patch-oracle-fusion-middleware-rce-flaw
-
Native Launches With Security Control Plane for Multicloud
The cloud security startup’s platform translates and enforces security policies across AWS, Azure, Google Cloud and Oracle using provider-native controls. First seen on darkreading.com Jump to article: www.darkreading.com/cloud-security/native-launches-security-control-plane-multicloud

