Wednesday 7 April 2021
The impact of this issue announcement is critical. Please act accordingly to rectify the issue, as stated below.
What's affected:
Outdated SAP applications
What you need to know:
In a published joint threat intelligence report with Onapsis, SAP has advised organisations to take immediate action, including an update of SAP security patches and review of configurations to prevent attacks from active cyber threats seeking to specifically compromise environments running vulnerable SAP applications. The US Department of Homeland Security’s CISA and Germany’s Federal Office for Information Security also released alerts for the same.
Actions to be taken:
Administrators of any SAP application are advised to run the latest updated version.
