Security News

Attackers Can Use SAP to Bridge Corporate, Operational ICS Networks (Threatpost)
2015-11-16 19:34

Research presented during Black Hat Europe demonstrates how attackers can abuse business applications connected to ICS and SCADA gear.

High-Risk SAP HANA Vulnerabilities Patched (Threatpost)
2015-11-09 17:13

Nearly two dozen critical SAP HANA vulnerabilities have been patched, including a critical misconfiguration of the TrexNet administrative interface.

SAP Patches 12 SQL Injection, XSS Vulnerabilities in HANA (Threatpost)
2015-09-29 15:32

SAP patched a dozen holes in its in-memory management system HANA that could have led to SQL injections, cross-site scripting (XSS) errors, and memory corruption vulnerabilities.