Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
Oracle HCM Users Group (OHUG)

Oracle HCM Users Group (OHUG) Vendor Cyber Rating & Cyber Score

ohug.org

Since 1998, the Oracle HCM Users Group (OHUG) has been bringing together clients, vendors, and industry-leading Oracle experts in an open participation environment fostering Oracle HCM application learning. Join our group on LinkedIn http://www.linkedin.com/groups?gid=44789&trk. Members include employees whose company has purchased one of the Oracle® HCM products, and consultants or third party vendors working on Oracle® HCM implementations. Membership is free! Join today and receive access to presentation archives containing information shared by industry-leading Oracle experts, in-depth training sessions and Webinars from industry experts, and the opportunity to share experiences and best-practices information with colleagues


OHUG A.I CyberSecurity Scoring

OHUG
Company Information
Website:http://www.ohug.org
Employees number:37
Number of followers:8,663
NAICS:81391
Industry Type:Industry Associations
Homepage:ohug.org
OHUG Risk Score (AI oriented)
Between 700 and 749
logo
OHUGIndustry Associations
Updated:
24/06/2026
748/1000
Moderate
Ba
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
OHUG Global Score (TPRM)
xxxx
logo
OHUGIndustry Associations
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

OHUG
OHUGModerate
Current Score
748Ba (MODERATE)
01000
1 incidents
-13 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
748Before Incident
JUNE 2026
748Before Incident
MAY 2026
761Before Incident
Vulnerability
27 May 2026OHUG
Oracle: NAIC confirms PeopleSoft breach as cybercriminals target insurance regulators

NAIC Cyberattack on PeopleSoft Systems by ShinyHunters

748After Incident
LOW-13
ORA1782312365
NAIC Confirms Cyberattack on PeopleSoft Systems by ShinyHunters The National Association of Insurance Commissioners (NAIC) disclosed a cyberattack on its Oracle PeopleSoft systems, detected on June 11, 2026, and publicly announced on June 23. The breach, attributed to the ShinyHunters hacking group, exploited CVE-2026-35273, a critical unauthenticated remote code execution vulnerability in PeopleSoft Enterprise PeopleTools (versions 8.61 and 8.62) with a CVSS score of 9.8. The flaw, requiring only HTTP network access, was actively exploited between May 27 and June 9, before Oracle issued an advisory on June 10. The attackers gained temporary access to data storage areas, though the NAIC confirmed no personally identifiable information (PII), payment data, or banking details were compromised. Exposed data included publicly available statutory financial reporting information and credit rating agency data, specifically insurer investment ratings. Despite ShinyHunters’ claims of breaching multiple NAIC systems including SERFF, OPTins, UCAA, EDP, and RDC cybersecurity experts verified these were not compromised. Operational disruptions persist: credit rating agencies paused data feeds, and the NAIC temporarily suspended investment designations. Online invoice payments via PeopleSoft remain unavailable. The NAIC, working with Alphabet’s Mandiant and Google Threat Intelligence, has remediated affected systems and blocked unauthorized access. No stolen data has been published as of the announcement. The incident is part of a broader campaign targeting over 100 organizations worldwide, with most victims in the U.S. (68% in higher education). ShinyHunters, known for data theft and extortion, did not deploy ransomware in this attack. The FBI and external cybersecurity firms are investigating, while the NAIC collaborates with credit rating providers to verify system security before resuming full services a process expected to take months. The breach underscores the growing threat to regulatory bodies, which face over 600 million identity attacks daily, per Microsoft Entra data. Oracle’s 14-day delay in issuing a patch left organizations vulnerable, highlighting risks in unpatched enterprise software. The NAIC has engaged its cyber insurance carrier in response.
INCIDENT DETAILS -
TYPE
Data Breach
MOTIVATION
Data theft and extortion
IMPACT
Data Compromised: Publicly available statutory financial reporting information and credit rating agency data (insurer investment ratings)Systems Affected: Oracle PeopleSoft systems (temporary access to data storage areas)Operational Impact: Credit rating agencies paused data feeds; NAIC temporarily suspended investment designations; online invoice payments via PeopleSoft remain unavailable
DATA BREACH
Type Of Data Compromised: Statutory financial reporting information, credit rating agency data (insurer investment ratings)Sensitivity Of Data: Low (publicly available data, no PII or payment information)Personally Identifiable Information: No
APRIL 2026
761Before Incident
MARCH 2026
761Before Incident
FEBRUARY 2026
761Before Incident
JANUARY 2026
761Before Incident
DECEMBER 2025
761Before Incident
NOVEMBER 2025
761Before Incident
OCTOBER 2025
761Before Incident
SEPTEMBER 2025
761Before Incident
AUGUST 2025
761Before Incident

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for OHUG ?
?
What was OHUG's A.I Rankiteo Cyber Score in June 2026 ?
?
What was OHUG's A.I Rankiteo Cyber Score in May 2026 ?
?
What was OHUG's A.I Rankiteo Cyber Score in April 2026 ?
?
What was OHUG's A.I Rankiteo Cyber Score in March 2026 ?
?
What was OHUG's A.I Rankiteo Cyber Score in February 2026 ?
?
What was OHUG's A.I Rankiteo Cyber Score in January 2026 ?
?
What was OHUG's A.I Rankiteo Cyber Score in December 2025 ?
?
What was OHUG's A.I Rankiteo Cyber Score in November 2025 ?
?
What was OHUG's A.I Rankiteo Cyber Score in October 2025 ?
?
What was OHUG's A.I Rankiteo Cyber Score in September 2025 ?
?
What was OHUG's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on OHUG's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with OHUG ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view OHUG's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?