ShinyHunters' Expanding Toolkit:
Oracle PeopleSoft Zero-Day Exploitation and
the BreachForums Defense Gaps
ShinyHunters dominated headlines this week: a zero-day, a BreachForums listing, and a wave of unverified claims all hitting at once. The harder problem isn't just keeping up with the volume. It's knowing which of it is real, which is noise, and what your team actually needs to act on.
Join hosts Tehman and John as they discuss:
- ShinyHunters zero-day exploitation of CVE-2026-35273
- Why a BreachForums listing extends the threat well beyond the initial compromise
- What proactive, resource-development-stage detection looks like in practice
Two questions your organization should be asking right now:
- Is your Oracle PeopleSoft Environment Management Hub internet-facing?
- Do you have dark web and criminal forum monitoring in place to detect before the attack begins?
John Dilgen: Cyber Threat Intelligence Analyst at ReliaQuest, where he specializes in researching cyber threats impacting ReliaQuest customers. With a strong technical background, he previously served as an Incident Response Analyst and Trainer at ReliaQuest.
Tehman Tariq: Sr. Manager of Cyber Operations at ReliaQuest. He has spent a majority of my career leading our Incident Response, Security Architecture, and Detection teams. As well has working hand in hand with CISOs to introduce automation allowing for the maturity of their security programs.
Additional Content
Learn How GreyMatter Agentic AI Scales Your Security Operations
GreyMatter is an agentic AI security operations platform with 6 agentic Teammates that use hundreds of agent skills and AI tools to work toward an objective, not just tasks.
