Newsletter

Hertz Data Breach Exposes Customer Information 

Description: 

​Hertz Corporation has confirmed a data breach affecting customers of its Hertz, Thrifty, and Dollar brands. The breach resulted from zero-day vulnerabilities exploited in the Cleo Communications file transfer platform between October and December 2024. 

The data compromised includes customer names, contact information, dates of birth, credit card details, driver’s license information, and, for a small number, Social Security numbers, passport information, and workers’ compensation data. Hertz has not disclosed the exact number of affected customers but has issued notifications across multiple regions, including the U.S., Canada, the EU, the UK, and Australia.​ 

The company states that its internal systems were not compromised and that there is no evidence of the stolen data being misused. Hertz is cooperating with law enforcement and regulatory bodies and has taken steps to address the vulnerabilities. 

External Links:

Bleeping Computer

Oracle privately informed Cloud breach to customers  

Description: 

​According to third-party sources, in April 2025, Oracle privately informed select customers of a security breach involving their legacy systems. The company disclosed that attackers accessed a “legacy environment” last utilized in 2017 and exfiltrated outdated client credentials. Oracle emphasized that this data was from defunct systems and posed minimal risk. 

Contradicting Oracle’s assurances, the threat actor, identified as “rose87168”, claimed responsibility for the breach and began selling data purportedly stolen from Oracle’s cloud servers. This individual provided samples, including data from late 2024 and early 2025, suggesting that more recent information was compromised. 

Further investigations revealed that the breach originated from Oracle’s Gen 1 servers, also known as Oracle Cloud Classic. The attackers allegedly exploited a 2020 Java vulnerability to deploy malware, leading to unauthorized access to the Oracle Identity Manager database. This database contained sensitive information such as user emails, usernames, and hashed passwords. 

In response to these developments, Oracle has engaged the Federal Bureau of Investigation (FBI) and cybersecurity firm CrowdStrike to investigate the incident. Despite these measures, the company has faced criticism for its handling of the breach, with insiders and customers expressing concerns about the transparency and timeliness of Oracle’s communications regarding the compromised data. 

External Links:

Bleeping Computer