Security News
SAP's May 2020 Security Patch Day updates, which the company released on Tuesday, include a total of 18 Security Notes and 4 updates to previous Notes, with six of them rated Hot News. This month, SAP released another update to a Hot News Security Note released in April 2018, which includes security patches for Chromium browser controls in Business Client.
SAP this week revealed that it is notifying customers of a series of security issues that it has identified in its cloud products. The Germany-based enterprise software maker said it discovered that some of its cloud products "Do not meet one or several contractually agreed or statutory IT security standards at present."
Virtustream, an enterprise-class cloud company and Dell Technologies business, announced new Managed Availability Services designed to deliver 99.95% availability for mission-critical SAP applications, giving peace of mind to enterprise customers who require the highest level of up-time for their applications. The new Managed Availability Services complement Virtustream's extensive xStreamCare services portfolio, extending its end-to-end support - from migration to management - for customers' SAP applications on the Virtustream cloud.
SAP this week released its latest set of security patches, which brings a total of 23 Security Notes, including five that address Hot News vulnerabilities. Another Hot News Security Note released as part of the April 2020 SAP Security Patch Day addresses a directory traversal vulnerability in SAP NetWeaver.
More than two thirds of SAP users believe their organizations put insufficient focus on IT security during previous SAP implementations, while 53.4% indicated that it is 'very common' for SAP security flaws to be uncovered during the audit process. 74.0% expect IT security to take greater priority in future SAP deployments, with 89.6% agreeing that security specialists should be brought on board to support their SAP S/4 HANA transformation programs.
SAP on Tuesday released 16 security notes and two updates to previously released patches as part of its March 2020 Security Patch Day, with three of the new notes rated hot news. The most important of the notes address critical missing authorization checks in Solution Manager.
Appsian, the leader in ERP data security, announced the SAP integration certification of their data security and compliance platform for SAP ERP Central Component and SAP S/4HANA. By integrating attribute-based access controls, fine-grained data security solutions and real-time user behavior analytics, Appsian enables SAP customers to fill many critical governance, risk, and compliance gaps that exist in ERP applications. "When it comes to ERP data access, context is everything," said Piyush Pandey, CEO at Appsian.
SnapLogic, provider of the #1 Intelligent Integration Platform, and system integration and data analytics services firm Rojo Consultancy, announced an expanded partnership and new pre-built intelligent connectors to make it faster and easier to integrate SAP applications and data sources with other third party systems. New Snaps for SAP SuccessFactors and SAP S/4HANA, together with expanded joint go-to-market plans between SnapLogic and Rojo, will help customers seamlessly connect their SAP and third party systems in order to automate business processes and improve decision making.
The company released three new High priority Security Notes and 10 Medium priority notes this month. The Hot News Security Note is an update for the supported Chromium version in SAP Business Client, which was initially released on April 2018 Patch Day.
SAP today released 6 Security Notes and 1 Updated Note as part of its January 2020 Security Patch Day, with all addressing Medium severity vulnerabilities. Next in line is CVE-2020-6304, a Denial of service flaw in SAP NetWeaver Internet Communication Manager, featuring a CVSS score of 5.9, which was reported to SAP in September, says Onapsis, a firm that specializes in securing SAP and Oracle applications.