One Oracle Zero-Day Just Hit 100+ Orgs — NAIC Is Only the Start

The ShinyHunters extortion group breached the National Association of Insurance Commissioners by exploiting an Oracle PeopleSoft zero-day,…

What NAIC admits — and what it flatly denies

NAIC says it spotted the intrusion on June 11, when it discovered that an unauthorized third party had gained access to a portion of its IT systems through its PeopleSoft platform.

The detail nobody is talking about: the hackers used AI to lie

Here is the part that should make every security team uneasy.

How ShinyHunters actually got in

The mechanics here matter, because they are repeatable.

Why NAIC is the tip of the iceberg

This is the headline most coverage is missing.

Get the full story

Read the complete breakdown, fixes and what happens next.