Thoughts on the recent alleged breach of Oracle Cloud’s login servers? What are your initial reactions to Oracle’s denial of the breach now that some customers have validated the leaked data?

Threat Intelligence & Incident Response Threat & Vulnerability Management

2.4k views1 Upvote3 Comments

Sort by:

CIO in Government9 months ago

Shameful! As the saying goes, it's not the crime, it's the cover up.
Oracle knew for months of the breach but kept on denying it rather than notifying their customers.

CISO and Head of Digital Channels in Healthcare and Biotech9 months ago

To mitigate risks, we assumed breach, adhering to IR playbooks and pressuring the vendor for accountability.

CIO in Banking9 months ago

Take identity and access management very seriously , require single sign on through Office365 Azure AD , think of rehearsing circuit breaking , and utilize conditional access to your cloud tenants , consult with Oracle team to help apply CIS benchmarks and security best practices

Content you might like

How can security leaders in smaller organizations stay informed about emerging threats if they don’t have access to formal threat intelligence feeds?

How many work-specific apps are installed on your mobile device?

0-426%

4-851%

8-1218%

12+3%

View Results

How have you shifted your remote work strategy as an organization as a result of cybersecurity incidents in the past year?

We've changed authentication procedures for employees24%

We've changed authentication procedures for customers48%

We've switched security vendors or service providers.46%

We've added additional security policies and/or requirements.27%

We've engaged with a breach notification service.9%

None of the above/No changes made.12%

Other (share below)

View Results

Our IT department is refreshing our SLAs and KPIs for Incident Management. I would like to know who is a recognized authority on industry averages for IT Service Management processes for the service desk? Below are examples of what I am looking for an industry average on. P1 95% resolved within 4 elapsed hours P2 90% resolved within 8 service hours P3 85% resolved within 3-5 days P4 85% resolved within 28 days

Thoughts on the recent alleged breach of Oracle Cloud’s login servers? What are your initial reactions to Oracle’s denial of the breach now that some customers have validated the leaked data?

Sort by:

Content you might like

How can security leaders in smaller organizations stay informed about emerging threats if they don’t have access to formal threat intelligence feeds?

How many work-specific apps are installed on your mobile device?

How have you shifted your remote work strategy as an organization as a result of cybersecurity incidents in the past year?

Do you use an ERM-system that also includes cyber security risk management? What tools or systems do you use?

What sets us apart?

Take Your Insights On-the-Go