Pinned
00:00
Horizon3.ai
3,441 posts
Horizon3.ai
@Horizon3ai
AI-Native Proactive Security
- Replying to @Horizon3ai
- Replying to @Horizon3ai⚠️ Apply Oracle mitigations immediately ⚠️ Restrict access to PSEMHUB endpoints ⚠️ Upgrade unsupported versions
- Replying to @Horizon3aiShinyHunters claims to have targeted 300 instances across more than 100 organizations.
- Replying to @Horizon3aiThis is already being exploited. Mandiant and Google observed activity attributed to UNC6240 (ShinyHunters) targeting PeopleSoft before Oracle's advisory.
- Replying to @Horizon3aiSuccessful exploitation can lead to full system compromise and access to highly sensitive enterprise data.
- Replying to @Horizon3aiWhy it matters: PeopleSoft often supports HR, payroll, finance, and student systems.
- Replying to @Horizon3aiNo login required. No user interaction required. Just network access to a vulnerable PeopleSoft endpoint.
- 🚨 We've reversed CVE-2026-35273 and released a Rapid Response test. This is a critical unauthenticated RCE in Oracle PeopleSoft PeopleTools.
- Horizon3.ai reposted
Today we are disclosing CVE-2026-48558, an auth bypass in #SimpleHelp RMM when OIDC is configured. Affected servers let unauth attackers create a Technician session - allowing remote control, script exec, monitoring. High-level details and IOCs: - Thirty vulnerabilities drop on a Tuesday morning. Do you know which one actually matters? Rapid Response combines attacker research, threat intelligence, and exploit validation to help security teams focus on what matters most. Not every headline CVE deserves your attention.
- Replying to @Horizon3aiWhat to do: ⚠️ Patch immediately ⚠️ Prioritize internet-facing deployments More info in Ivanti's advisory: hub.ivanti.com/s/article/Secu…
