Security News > 2021 > April > SAP and Onapsis detail findings of potential exploits on unprotected SAP apps
In a press conference detailing the report, Onapsis CEO Mariano Nunez said that the company confirmed over 300 exploitations, more than 107 hands-on attacks and seven tracked threat vectors in 18 countries, based on "Direct observation of threat activity." The data is not based on the exploitation of SAP customers' environments, Nunez added.
SAP and Onapsis stressed that they are not aware of known customer breaches related to this research.
Both companies noted that many organizations still have not applied relevant mitigations that have long been provided by SAP. The intelligence captured by Onapsis and SAP highlights active threat activity that seeks to target and compromise organizations running unprotected SAP applications, through a variety of cyberattack vectors.
Nunez said Onapsis has observed exploitation techniques that could potentially lead to full control of the unsecured SAP applications, bypassing common security and compliance controls, and enabling attackers to steal sensitive data, perform financial fraud or disrupt mission-critical business processes by deploying ransomware or stopping operations.
"This proactive research effort is the latest example of our commitment to ensure our global customers remain protected," said Tim McKnight, chief security officer of SAP. The research Onapsis has shared with SAP is aimed at helping customers ensure their mission-critical applications are protected, he said.
SAP and Onapsis are recommending that companies immediately apply relevant SAP security patches.