A cybercrime operation linked to ShinyHunters appears to have expanded access to education technology systems used by colleges and universities, according to a report cited by Higher Ed Dive. Google Threat Intelligence Group and Mandiant said ShinyHunters targeted human resources and financial management tools, including Oracle PeopleSoft, at more than 100 organizations between May 27 and June 9. About 68% of the affected organizations are colleges or universities, largely in the United States, raising fresh concern about whether campuses properly segment and monitor enterprise systems that power financial operations and student services. Oracle issued a security alert on June 10, but the blog post said some organizations experienced compromise and later data publication on the ShinyHunters DLS. The University of Nottingham in England confirmed it was part of the breach, and university officials told students they are determining what data was accessed. For U.S. campuses, the incident highlights the need for rapid patching, incident response readiness, and close coordination between IT security teams and finance-operations owners of ERP systems.