Top Cyber Attack Vectors For Critical SAP Systems

An anonymous reader writes: Despite housing an organization's most valuable and sensitive information, SAP systems are not protected from cyber threats by traditional security approaches. Based on assessments of hundreds of SAP implementations, the Onapsis Research Labs study found that over 95 percent of SAP systems were exposed to vulnerabilities that could lead to full compromise of the company's business data and processes. Most companies are also exposed to protracted patching windows averaging 18 months or more. In 2014 alone, 391 security patches were released by SAP, averaging more than 30 per month. Almost 50 percent of them were ranked as "high priority" by SAP.

Re:wha?

[v1]

You'd think that [i]somewhere[/i] in the article they'd least ONCE explain that short acronym. But no. Short acronyms are difficult to google.

I think they're talking about this?

Re:wha?

[cbelt3]

Systeme, Anwendungen und Produkte (Systems, Applications, and Products).

www.sap.com

Basically it's one of the two the largest Enterprise Resource Planning software companies in the world. Oracle is the other one. And since most SAP systems are run inside a highly protected corporate network, the self-promoting hysteria from this article is so much bullcrap.