Tag: sap
-
SAP-Systeme geraten zunehmend ins Visier von Cyber-Angreifern
by
in SecurityNews
Tags: access, authentication, china, cve, cyber, cybercrime, dark-web, exploit, hacker, intelligence, Internet, ransomware, sap, siem, update, vulnerability, zero-daywidth=”5000″ height=”2813″ sizes=”(max-width: 5000px) 100vw, 5000px”>Angriffe auf SAP-Systeme versprechen Hackern fette Beute. ShutterstockEin Rückblick auf Bedrohungsdaten aus den zurückliegenden vier Jahren macht deutlich, dass immer mehr Cyberkriminelle SAP-Systeme ins Visier nehmen. Das berichtete Yvan Genuer, leitender Sicherheitsforscher bei Onapsis auf der Black Hat Europe, die vom 9. bis 12. Dezember 2024 in London stattfand. Demzufolge…
-
SAP Patchday Dezember 2024 – Kritische Schwachstelle in SAP NetWeaver AS for Java
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/de-2024-12-sap-sicherheitsupdates-dezember-a-19125652b491abbb45e69fa71313ebbb/
-
SAP fixed critical SSRF flaw in NetWeaver’s Adobe Document Services
by
in SecurityNewsSAP has issued patches for 16 vulnerabilities, including a critical SSRF flaw in NetWeaver’s Adobe Document Services. SAP addressed 16 vulnerabilities as part of its December 2024 Security Patch Day. The company released nine new and four updated security notes. The most severe of these vulnerabilities is a critical issue, tracked as CVE-2024-47578 (CVSS score…
-
SAP Compliance und Patch Management in der Rüstungsindustrie
by
in SecurityNewsMit dem SecurityBridge Vulnerability- und Patch Management sind die monatlichen SAP Security Notes kein Problem mehr und die SAP-Basis hat viel Zeit gewonnen, um sich der weiteren Systemhärtung zu widmen. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/sap-compliance-und-patch-management-in-der-ruestungsindustrie/a39212/
-
SAP Patches Critical Vulnerability in NetWeaver
by
in SecurityNewsSAP has released patches for 16 vulnerabilities, including a critical-severity SSRF bug in NetWeaver (Adobe Document Services). The post SAP Patches Critical Vulnerability in NetWeaver appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/sap-patches-critical-vulnerability-in-netweaver/
-
Critical SAP Vulnerabilities Let Attackers Upload Malicious PDF Files
by
in SecurityNewsSAP has issued Security Note 3536965 to address multiple high-severity vulnerabilities in the Adobe Document Services of SAP NetWeaver AS for JAVA. These vulnerabilities, identified as CVE-2024-47578, CVE-2024-47579, and CVE-2024-47580, allow attackers to manipulate or upload malicious PDF files, potentially compromising internal systems and exposing sensitive data. Details of the Vulnerabilities CVE-2024-47578: Server-Side Request Forgery (SSRF) This flaw allows attackers with administrative privileges to send specially crafted…
-
SAP-Patchday: Updates schließen teils kritische Sicherheitslücken
by
in SecurityNewsIm Dezember informiert SAP über neun neu entdeckte Sicherheitslücken in diversen Produkten. Eine davon gilt als kritisches Risiko. First seen on heise.de Jump to article: www.heise.de/news/SAP-Patchday-Updates-schliessen-teils-kritische-Sicherheitsluecken-10193418.html
-
Maximizing SAP Security: How AI and Human Intervention Work
by
in SecurityNewsTips toward improving the security rating of your code base while preventing any new vulnerabilities from appearing in your SAP landscape. First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/12/maximizing-sap-security-how-ai-and-human-intervention-work/
-
Maximizing SAP Security: How AI and Human Intervention Work
by
in SecurityNewsTips toward improving the security rating of your code base while preventing any new vulnerabilities from appearing in your SAP landscape. First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/12/maximizing-sap-security-how-ai-and-human-intervention-work/
-
Talent overlooked: embracing neurodiversity in cybersecurity
by
in SecurityNewsIn cybersecurity, diverse perspectives help in addressing complex, emerging threats. Increasingly, there’s a push to recognize that neurodiversity brings significant value to cybersecurity. However, neurodiverse people frequently face systemic barriers that hinder their success in the field.Neurodiversity refers to the way some people’s brains work differently to the neurotypical brain. This includes autism, ADHD (attention…
-
Termine 2025 – Wann ist der Patchday von SAP?
by
in SecurityNews
Tags: sapFirst seen on security-insider.de Jump to article: www.security-insider.de/sap-security-notes-patchday-2025-zukunft-a-104264be1a6487e99a46f702be7ff327/
-
SecurityBridge stellt Security Dashboard for SAP vor
by
in SecurityNews
Tags: sapDas Dashboard ermöglicht eine schnelle und frühzeitige Lösung von SAP-Sicherheitsproblemen. Es beinhaltet eine Bibliothek mit vordefinierten Diagramme… First seen on infopoint-security.de Jump to article: www.infopoint-security.de/securitybridge-stellt-security-dashboard-for-sap-vor/a37409/
-
SAP Patches High-Severity Vulnerability in Web Dispatcher
by
in SecurityNewsSAP has released eight new security notes on November 2024 patch day, including one addressing a high-severity vulnerability in Web Dispatcher. The post SAP Patches High-Severity Vulnerability in Web Dispatcher appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/sap-patches-high-severity-vulnerability-in-web-dispatcher/
-
SAP Patchday: Acht neue Sicherheitslücken, davon eine hochriskant
by
in SecurityNews
Tags: sapAdmins können etwas entspannter auf den aktuellen SAP-Patchday schauen: Von acht neuen Sicherheitslücken gilt lediglich eine als hohes Risiko. First seen on heise.de Jump to article: www.heise.de/news/SAP-Patchday-Acht-neue-Sicherheitsluecken-davon-eine-hochriskant-10020168.html
-
10 Tipps für mehr ERP-Sicherheit durch erhöhte Security-Awareness
by
in SecurityNewsObwohl SAP-Anwendungslandschaften und ERP-Systeme das Herzstück vieler IT-Umgebungen bilden, sind sie oft ein blinder Fleck der IT-Sicherheit. Gleichz… First seen on netzpalaver.de Jump to article: netzpalaver.de/2024/10/29/10-tipps-fuer-mehr-erp-sicherheit-durch-erhoehte-security-awareness/
-
ERP-Systeme in das Identity und Access Management integrieren – Best Practices für SAP S/4 HANA und IAM-Programme
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/erp-system-integration-in-iam-programme-a-3dc634da3a508e2cf1e8c9b3d4b2b407/
-
Militärisches Logistiksystem: Schweizer Armee erteilt SAP-Lösung eine Absage
by
in SecurityNews
Tags: sapFür die Logistik der Schweizer Armee sollte ursprünglich eine Lösung von SAP eingeführt werden. Kurz vor dem Ziel wurde das Projekt jedoch abgebrochen… First seen on golem.de Jump to article: www.golem.de/news/militaerisches-logistiksystem-schweizer-armee-erteilt-sap-loesung-eine-absage-2410-190112.html
-
Onapsis debuts SAP security capabilities for BTP
by
in SecurityNewsNew capabilities from Onapsis are aimed at enabling customers to assess security for and protect SAP Business Technology Platform from configuration a… First seen on techtarget.com Jump to article: www.techtarget.com/searchsap/news/366611841/Onapsis-debuts-SAP-security-capabilities-for-BTP
-
CVSS 9.8 für SAP BusinessObjects BI – Deshalb sollten Sie das Oktober-Update von SAP schnellstmöglich installieren
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/kritische-sicherheitsluecken-sap-business-objects-bi-a-a78a921f070e867a281fcdb41b9f8a0d/
-
SAP-Patchday: Sechs neu gemeldete Sicherheitslücken in Business-Software
by
in SecurityNewsFirst seen on heise.de Jump to article: www.heise.de/news/SAP-Patchday-Sechs-neu-gemeldete-Sicherheitsluecken-in-Business-Software-9971616.html
-
Organizations Warned Of Exploited SAP, Gpac, And D-Link Vulnerabilities
by
in SecurityNewsFirst seen on packetstormsecurity.com Jump to article: packetstormsecurity.com/news/view/36413/Organizations-Warned-Of-Exploited-SAP-Gpac-And-D-Link-Vulnerabilities.html
-
SAP, D-Link flaws among 4 added to Known Exploited Vulnerabilities catalog
by
in SecurityNewsFirst seen on scworld.com Jump to article: www.scworld.com/news/sap-d-link-flaws-among-4-added-to-known-exploited-vulnerabilities-catalog
-
U.S. CISA adds D-Link DIR-820 Router, DrayTek Multiple Vigor Router, Motion Spell GPAC, SAP Commerce Cloud bugs to its Known Exploited Vulnerabilities catalog
by
in SecurityNewsU.S. Cybersecurity and Infrastructure Security Agency (CISA) adds D-Link DIR-820 Router, DrayTek Multiple Vigor Router, Motion Spell GPAC, SAP Commerc… First seen on securityaffairs.com Jump to article: securityaffairs.com/169189/hacking/u-s-cisa-adds-d-link-dir-820-router-draytek-multiple-vigor-router-motion-spell-gpac-sap-commerce-cloud-bugs-to-its-known-exploited-vulnerabilities-catalog.html
-
Organizations Warned of Exploited SAP, Gpac and D-Link Vulnerabilities
by
in SecurityNewsCISA warns that years-old vulnerabilities in SAP Commerce, Gpac framework, and D-Link DIR-820 routers are exploited in the wild. The post Organization… First seen on securityweek.com Jump to article: www.securityweek.com/organizations-warned-of-exploited-sap-gpac-and-d-link-vulnerabilities/
-
SAP-Patchday: 16 Sicherheitsmitteilungen zu diversen Produkten
by
in SecurityNews
Tags: sapFirst seen on heise.de Jump to article: www.heise.de/news/SAP-Patchday-16-Sicherheitsmitteilungen-zu-diversen-Produkten-9863252.html
-
RISE with SAP sinking year on year
by
in SecurityNews
Tags: sapFirst seen on theregister.com Jump to article: www.theregister.com/2024/09/16/gartner_finds_rise_with_sap/
-
SAP Releases 16 New Security Notes on September 2024 Patch Day
by
in SecurityNewsSAP has released patches for multiple missing authorization check and information disclosure vulnerabilities on its September 2024 Security Patch Day…. First seen on securityweek.com Jump to article: www.securityweek.com/sap-releases-16-new-security-notes-on-september-2024-patch-day/
-
SAP CTO bows out over ‘incident’ at company shindig
by
in SecurityNews
Tags: sapFirst seen on theregister.com Jump to article: www.theregister.com/2024/09/03/sap_cto_departs/