Key Insights Blog

Read the latest insights from our experts on Cybersecurity and Risk management for SAP. 

July 20, 2020
#saprecon, #sapsecurity

The week after SAP RECON
[CVE-2020-6287]

SAP Patch Day July 2020 shocked the customer community of SAP SE. Although everyone assumed that zero-days with a high-risk potential of exploitation exist, the recent Patch Day has delivered evidence. Read more to understand what you should do as the next best action to protect your enterprise.
Category:
July 14, 2020
#patch, #sapsecurity

SAP Security Patch Day – July 2020

We are rapidly approaching summer vacation. Despite the holiday season the SAP Security Response team remains very active also with this months patchday. Today, the 14th of July 2020, 7 new patches and 2 updates to existing patches have been released.
Category:
July 13, 2020
#2fa, #compliance, #gdpr, #sapsecurity

2FA for SAP, and how to hack it

Gear up your SAP Logon process using 2 factor authentification. 2FA, typically demands two components to co-exist, in the same place, at the time of login. In practice, this typically means the end-user has a physical device such as a SmartCard, and a memorized PIN number.
Category:
July 7, 2020
#audit, #compliance, #gdpr, #sox

Ensuring SAP compliance

In information technology, compliance and security are inseparable. For SAP systems, this relatively simple relationship between compliance and security becomes a little bit more complicated, read more to learn about the reasons.
Category:
July 1, 2020
#s4hana, #sapsecurity

3 Benefits of an integrated holistic SAP security platform

Selecting a specialized solution for each security area, however, has some limitations. A holistic approach offers additional benefit that is required to gain insight into potential risks and to offer full transparency of the security posture.
Category:
June 18, 2020
#interface, #rfc, #sapsecurity

Get a grip on SAP Interface Security

Latest addition to the SecurityBridge suite is a fully integrated interface monitor, which visualizes RFC interface connectivity across your SAP landscape. Through a bird’s eye view security critical traffic and vulnerable interfaces can easily be spotted.
Category:
June 16, 2020
#patch, #sapsecurity

SAP Security Patch Day – June 2020

On the 9th of June 2020 the SAP Product Security Response Team released 18 patches out of which 1 contains an update from a previous release. Every second Tuesday of the month the team publishes corrections and recommendations, which fix known vulnerabilities discovered within SAP products.
Category:
June 16, 2020
#rfc, #sapsecurity

Hunting those hiding in the shadows

Over and over again we see attackers who have gained unauthorized access to a system by spending a significant amount of time spying out relevant SAP data, unnoticed by the victim organization. In a recent incident, we identified a large number of information gathering and data collection activities carried out by a threat actor prior to the exfiltration of sensitive data - which, if leaked, would inevitably lead to reputation and/or financial loss for the organization.
Category:
Find recent Security Advisories for SAP©
View Advisories

You like it?
Share it!

Share on linkedin
Share on twitter
Share on whatsapp
Share on email
Whitepaper - Top SAP security mistake to avoid

Looking into securing your SAP landscape? This white-paper tells you the “Top Mistakes to Avoid in SAP Security“. Download it now.