Skip to main content

SAP

Dozens of companies breached through SAP bug patched years ago

posted onMay 12, 2016
by l33tdawg

L33tdawg: Interested in SAP security? You might like to attend this 2-day training at #HITB2016AMS

More than 36 organizations—some in the gas, telecommunications, and steel manufacturing industries—have been breached by attackers exploiting a vulnerability in older SAP business applications that gives them remote access to highly confidential data, the US government-sponsored CERT warned Wednesday.

5 Reasons SAP Security Matters

posted onFebruary 29, 2016
by l33tdawg

L33tdawg: If you're into SAP security, this training at #HITB2016AMS is for you

SAP enterprise applications play a mission-critical role at countless organizations around the world, yet relatively little is discussed about the potential consequences of successful cyberattacks on these apps.

SAP dismisses HANA security concerns, acknowledges need for better S/4 messaging

posted onDecember 9, 2015
by l33tdawg
Credit:

SAP has dismissed concerns about security flaws in its HANA platform, but acknowledges there are gaps in customers' understanding about how they can benefit from S/4 HANA.

Senior executives from the German software vendor gathered at the SAP HANA Forum held here Tuesday, where they provided an update on user adoption of the in-memory database.

SAP Hana users warned of security vulnerability

posted onJune 19, 2015
by l33tdawg
Credit:

Hard on the heels of the release of a newly updated version of SAP Hana, a security researcher has warned of a potentially serious vulnerability in the in-memory platform.

"If an attacker can exploit this vulnerability, he can get access to all encrypted data stored in an SAP Hana database," said Alexander Polyakov, CTO with ERPScan, which presented the details Thursday at the Black Hat Sessions XIII conference in the Netherlands.

PeopleSoft Vulnerabilities Elevate ERP Security Issues

posted onJune 1, 2015
by l33tdawg

Enterprise resource planning systems are the unexplored continent of vulnerability research, in spite of the fact that these massive, critical business systems support the inner workings of many large corporations and IT organizations.

A recent run of bugs in SAP, and a presentation at this week’s Hack in the Box conference in Amsterdam, however, could turn the tide and open some eyes to ERP security issues.

Fake patient data could have been uploaded through SAP medical app

posted onMarch 24, 2015
by l33tdawg

SAP has fixed two flaws in a mobile medical app, one of which could have allowed an attacker to upload fake patient data.

The issues were found in SAP’s Electronic Medical Records (EMR) Unwired, which stores clinical data about patients including lab results and images, said Alexander Polyakov, CTO of ERPScan, a company based in Palo Alto, California, that specializes in enterprise application security.

SAP lays out its strategy for growth, with HANA at the forefront

posted onFebruary 5, 2014
by l33tdawg

SAP's strategy event for the investment community on Tuesday offered few major surprises to anyone who's been closely monitoring the software vendor lately, but did serve to cement the company's future direction for product development, growth and customer retention. Here's a look at some of the highlights of the event.

Five ways to win: SAP is now centered on five product categories, namely cloud computing, database, mobility, analytics and enterprise applications. Together, they represent a $350 billion market opportunity by 2020, co-CEO Bill McDermott said during the event.

SAP to pay $306M to Oracle after infringement fight

posted onAugust 3, 2012
by l33tdawg

Oracle has won at least one legal battle this week. SAP is paying the hardware giant $306 million in damages resulting from a copyright infringement suit.

Unlike the fight against Google, it looks like victory over SAP really is a payday. SAP's bill to Oracle continues to get bigger as Oracle's general counsel Dorian Daley said in a statement that SAP will have to pay "a minimum of $426 million, including attorneys’ fees."

Three Wildly Different Ways SAP Is Bring Mobile And Cloud Together

posted onJuly 19, 2012
by l33tdawg

Several months ago, I wrote about the Four Ways SAP Is Embracing SoCloMo, i.e. the mashup of Social, Cloud and Mobile technology.

Predictably, one of the ways involved our cloud HR acquisition, SuccessFactors. But there were three other excellent efforts that show just far SAP's progressed beyond R/3.