oracle sucks

Posted byslinkyskirtPosted inUncategorizedTags:, , , ,

I hate them because their ceo gets into politics and warmongering. He brags about killing people and does politics.

I like the Neely and other editors comments:

Oracle Denies Cloud Breach Because Servers Were “Obsolete”(April 8 & 9, 2025)

After denying that a reported March 20, 2025 breach of Oracle Cloud took place, Oracle has now sent emails to customers informing them that “a hacker did access and publish user names” and encrypted or hashed passwords, specifying that the credentials were on “obsolete servers that were never a part of OCI,” and therefore that “the Oracle Cloud — also known as Oracle Cloud Infrastructure or OCI — has NOT experienced a security breach.” Oracle’s notification email states that in the specific context of OCI, customer environments, customer data, and cloud service have not been compromised. Multiple news sources have received confirmation of the leaked data’s authenticity from Oracle customers. Kevin Beaumont characterized Oracle’s response as “wordplay,” and asked, “How long was the attacker in the SaaS solution (that Oracle manage)? What did they do with the access? How long were they in for? Why were ‘legacy’ systems containing customer info left unmanaged and insecure?” Oracle is currently facing a class-action lawsuit over a separate breach of Oracle Health servers, also not publicly acknowledged by the company.

Editor’s Note[Elgee]

“No, it was an OLD plane that went down. It doesn’t count as a crash!” The fastest way to lose trust is half-truths and evasiveness. I’m sure there are some great people doing great work there, but they’re not putting their best foot forward.[Neely]

Clarification of the scope of the breach is helpful. The identities were stolen from the Oracle Cloud Classic (OCC) Oracle Identity Manager (IDM) database which included usernames, emails and hashed passwords. It is positioned as a legacy service, so you should be moving away from it if you are using it, disabling any remaining OCC IDM accounts. If you have an OCI account, which should have a different password from OCC, make sure that you’re enforcing MFA.[Dukes]

It would appear that Oracle is ‘doubling-down’ on their denial of a security breach of their network. If the servers were obsolete, then why not expunge all user data and take them off-line. It speaks to Oracle processes, or lack thereof. Honestly, it’s not a good look for Oracle for being a responsible company.

Leave a comment