OHUG A.I CyberSecurity Scoring
OHUG
Company Information
Website:http://www.ohug.org
Employees number:37
Number of followers:8,663
NAICS:81391
Industry Type:Industry Associations
Homepage:ohug.org
OHUG Risk Score (AI oriented)
Between 700 and 749
OHUGIndustry Associations
Updated:
24/06/2026
24/06/2026
748/1000
Moderate
Ba
OHUG Global Score (TPRM)
xxxx
OHUGIndustry Associations
Score locked

OHUGModerate
Current Score
748Ba (MODERATE)
01000
1 incidents
-13 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
748
JUNE 2026
748
MAY 2026
761
Vulnerability
27 May 2026 • OHUG
Oracle: NAIC confirms PeopleSoft breach as cybercriminals target insurance regulators
NAIC Cyberattack on PeopleSoft Systems by ShinyHunters
748
LOW-13
ORA1782312365
NAIC Confirms Cyberattack on PeopleSoft Systems by ShinyHunters
The National Association of Insurance Commissioners (NAIC) disclosed a cyberattack on its Oracle PeopleSoft systems, detected on June 11, 2026, and publicly announced on June 23. The breach, attributed to the ShinyHunters hacking group, exploited CVE-2026-35273, a critical unauthenticated remote code execution vulnerability in PeopleSoft Enterprise PeopleTools (versions 8.61 and 8.62) with a CVSS score of 9.8. The flaw, requiring only HTTP network access, was actively exploited between May 27 and June 9, before Oracle issued an advisory on June 10.
The attackers gained temporary access to data storage areas, though the NAIC confirmed no personally identifiable information (PII), payment data, or banking details were compromised. Exposed data included publicly available statutory financial reporting information and credit rating agency data, specifically insurer investment ratings. Despite ShinyHunters’ claims of breaching multiple NAIC systems including SERFF, OPTins, UCAA, EDP, and RDC cybersecurity experts verified these were not compromised.
Operational disruptions persist: credit rating agencies paused data feeds, and the NAIC temporarily suspended investment designations. Online invoice payments via PeopleSoft remain unavailable. The NAIC, working with Alphabet’s Mandiant and Google Threat Intelligence, has remediated affected systems and blocked unauthorized access. No stolen data has been published as of the announcement.
The incident is part of a broader campaign targeting over 100 organizations worldwide, with most victims in the U.S. (68% in higher education). ShinyHunters, known for data theft and extortion, did not deploy ransomware in this attack. The FBI and external cybersecurity firms are investigating, while the NAIC collaborates with credit rating providers to verify system security before resuming full services a process expected to take months.
The breach underscores the growing threat to regulatory bodies, which face over 600 million identity attacks daily, per Microsoft Entra data. Oracle’s 14-day delay in issuing a patch left organizations vulnerable, highlighting risks in unpatched enterprise software. The NAIC has engaged its cyber insurance carrier in response.
INCIDENT DETAILS -
TYPE
MOTIVATION
IMPACT
DATA BREACH
REFERENCES
APRIL 2026
761
MARCH 2026
761
FEBRUARY 2026
761
JANUARY 2026
761
DECEMBER 2025
761
NOVEMBER 2025
761
OCTOBER 2025
761
SEPTEMBER 2025
761
AUGUST 2025
761
Frequently Asked Questions
?
What is the current A.I Rankiteo Cyber Score for OHUG ??
What was OHUG's A.I Rankiteo Cyber Score in June 2026 ??
What was OHUG's A.I Rankiteo Cyber Score in May 2026 ??
What was OHUG's A.I Rankiteo Cyber Score in April 2026 ??
What was OHUG's A.I Rankiteo Cyber Score in March 2026 ??
What was OHUG's A.I Rankiteo Cyber Score in February 2026 ??
What was OHUG's A.I Rankiteo Cyber Score in January 2026 ??
What was OHUG's A.I Rankiteo Cyber Score in December 2025 ??
What was OHUG's A.I Rankiteo Cyber Score in November 2025 ??
What was OHUG's A.I Rankiteo Cyber Score in October 2025 ??
What was OHUG's A.I Rankiteo Cyber Score in September 2025 ??
What was OHUG's A.I Rankiteo Cyber Score in August 2025 ??
What is the average per-incident point impact on OHUG's A.I Rankiteo Cyber Score over the past 12 months ??
Where can I access detailed records of all cyber incidents associated with OHUG ??
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ??
Where can I view OHUG's profile page on Rankiteo ??
How accurate is the A.I Rankiteo Risk Scoring methodology ?