Tuesday, October 15, 2024
HomeCVE/vulnerabilitySAP to Address Security Issues With Some Cloud Products and to Notify...

SAP to Address Security Issues With Some Cloud Products and to Notify 440,000 Customers

Published on

Malware protection

SAP(Systems Applications and Products) announced on Monday that they are to patch security issues with some of their cloud-based products.

The bugs are identified as a part of the internal cybersecurity audit and the company already started working on it.

SAP Security Issues

SAP said that some of it is “cloud products do not meet one or several contractually agreed or statutory IT security standards” and they started to fix them.

- Advertisement - SIEM as a Service

Following are the products affected;

SAP Success Factors, SAP Concur, SAP/CallidusCloud Commissions, SAP/Callidus Cloud CPQ; as well as SAP C4C/Sales Cloud, SAP Cloud Platform, and SAP Analytics Cloud.

SAAP confirms that the vulnerabilities are not identified as a part of a security incident and no customer data has been compromised.

“To ensure that the affected products meet relevant terms and conditions and in addition to technical remediation, SAP has decided to update its security-related terms and conditions. These remain in line with market peers,” reads the advisory.

SAP said they started fixing the bugs with affected products to meet the IT security standards at present and the bug fixes will largely be completed in the second quarter of 2020.

SAP SE executive board has decided to “inform and support the affected customers individually – approximately 9 percent of SAP’s 440,000 customers.”

SAP has more than 75,000 customers in 120 countries and has 140,000 installations worldwide.

You can follow us on Linkedin, Twitter, Facebook for daily Cybersecurity and hacking news updates.

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

OilRig Hackers Exploiting Microsoft Exchange Server To Steal Login Details

Earth Simnavaz, an Iranian state-sponsored cyber espionage group, has recently intensified its attacks on...

CoreWarrior Malware Attacking Windows Machines From Dozens Of IP Address

Researchers recently analyzed a CoreWarrior malware sample, which spreads aggressively by creating numerous copies...

TrickMo Malware Targets Android Devices to Steal Unlock Patterns and PINs

The recent discovery of the TrickMo Banking Trojan variant by Cleafy has prompted further...

pac4j Java Framework Vulnerable to RCE Attacks

A critical security vulnerability has been discovered in the popular Java framework pac4j. The...

Free Webinar

Protect Websites & APIs from Malware Attack

Malware targeting customer-facing websites and API applications poses significant risks, including compliance violations, defacements, and even blacklisting.

Join us for an insightful webinar featuring Vivek Gopalan, VP of Products at Indusface, as he shares effective strategies for safeguarding websites and APIs against malware.

Discussion points

Scan DOM, internal links, and JavaScript libraries for hidden malware.
Detect website defacements in real time.
Protect your brand by monitoring for potential blacklisting.
Prevent malware from infiltrating your server and cloud infrastructure.

More like this

OilRig Hackers Exploiting Microsoft Exchange Server To Steal Login Details

Earth Simnavaz, an Iranian state-sponsored cyber espionage group, has recently intensified its attacks on...

pac4j Java Framework Vulnerable to RCE Attacks

A critical security vulnerability has been discovered in the popular Java framework pac4j. The...

Foxit PDF Reader Vulnerability Let Attackers Execute Arbitary Code

Researchers recently disclosed six new security vulnerabilities across various software, as one critical vulnerability...