On March 21, 2025, a threat actor by the name ‘rose87168’ published six million records, claiming the data was stolen from Oracle’s Cloud federated Single-Sign-On (SSO) login service and demanding payment from affected customers.
Xactly Corporation has been in communication with Oracle to determine the veracity of this claim and any potential threat to Xactly or its clients.
As of the time of this notice, Oracle has provide Xactly, along with its other clients with the following statement:
“There has been no breach of Oracle Cloud. The published credentials are not for the Oracle Cloud. No Oracle Cloud customers experienced a breach or lost any data.”
At this time, we continue to monitor any developments and take all appropriate actions to investigate any further claims but have no reason to believe that Xactly or any of its clients have been implicated.
We will provide further updates as they become available.
