[US] Nissan reveals Oracle PeopleSoft cyberattack impacted payroll records

[US] Nissan reveals Oracle PeopleSoft cyberattack impacted payroll records
02 Jul 2026

In the US, Nissan has joined a growing list of Oracle customers impacted by a cyberattack. The automaker has warned employees that payroll records, bank details, Social Security numbers, and other personal data could have been stolen, The Register reports.

Nissan Americas submitted a filing to the California Attorney General on June 26. The filing stated that Oracle had informed it of "a cyber event" involving the personnel records of "hundreds of companies." According to Nissan, it later learned that it had been "specifically targeted" in the attack.

The Register has reportedly seen a notification sent to current and former employees, saying the company believes attackers accessed a haul of sensitive info, including contact and banking information, Social Security, Social Insurance, or other national identification numbers, financial and tax records, and dependent and beneficiary details.

The cyberattack potentially impacted current and former employees in the US, Canada, Mexico, and Brazil. Nissan said it is still working to determine exactly whose information was exposed.

The automaker said it initiated its incident response plan after learning of the intrusion, brought in outside security specialists, and has been working with Oracle while keeping law enforcement informed. It intends to offer affected individuals credit or dark web monitoring where available.

In addition, Nissan Americas has fortified its payroll office. Employees currently only have access to pay slips or the ability to update direct deposit details via a corporate network or through a secure VPN, while the company adds additional identity checks before processing payroll requests.

The accompanying employee FAQ reportedly attributes the incident to "an unknown vulnerability in Oracle's PeopleSoft software" and says the campaign is affecting "hundreds of companies and institutions." 

The document fails to disclose what the vulnerability is, whether Oracle has patched it, or whether the compromised PeopleSoft environment was hosted by Oracle or by Nissan itself.


Source: The Register

(Link and quotes via original reporting)

 

In the US, Nissan has joined a growing list of Oracle customers impacted by a cyberattack. The automaker has warned employees that payroll records, bank details, Social Security numbers, and other personal data could have been stolen, The Register reports.

Nissan Americas submitted a filing to the California Attorney General on June 26. The filing stated that Oracle had informed it of "a cyber event" involving the personnel records of "hundreds of companies." According to Nissan, it later learned that it had been "specifically targeted" in the attack.

The Register has reportedly seen a notification sent to current and former employees, saying the company believes attackers accessed a haul of sensitive info, including contact and banking information, Social Security, Social Insurance, or other national identification numbers, financial and tax records, and dependent and beneficiary details.

The cyberattack potentially impacted current and former employees in the US, Canada, Mexico, and Brazil. Nissan said it is still working to determine exactly whose information was exposed.

The automaker said it initiated its incident response plan after learning of the intrusion, brought in outside security specialists, and has been working with Oracle while keeping law enforcement informed. It intends to offer affected individuals credit or dark web monitoring where available.

In addition, Nissan Americas has fortified its payroll office. Employees currently only have access to pay slips or the ability to update direct deposit details via a corporate network or through a secure VPN, while the company adds additional identity checks before processing payroll requests.

The accompanying employee FAQ reportedly attributes the incident to "an unknown vulnerability in Oracle's PeopleSoft software" and says the campaign is affecting "hundreds of companies and institutions." 

The document fails to disclose what the vulnerability is, whether Oracle has patched it, or whether the compromised PeopleSoft environment was hosted by Oracle or by Nissan itself.


Source: The Register

(Link and quotes via original reporting)

 

Leave a Reply

All blog comments are checked prior to publishing