LONDON: Up to 50,000 companies running SAP software are at greater risk of being hacked after security researchers found new ways to exploit vulnerabilities of systems that haven't been properly protected and published the tools to do so online.
"With these exploits, a hacker could steal anything that sits on a company's SAP systems and also modify any information there – so he can perform financial fraud, withdraw money, or just plainly sabotage and disrupt the systems."SAP software is used by more than 90 percent of the world's top 2,000 companies to manage everything from employee payrolls to product distribution and industrial processes.
If a company's security settings are not configured correctly, he said, a hacker can trick an application into thinking they are another SAP product and gain full access without the need for any login credentials. Nunez said he would share his company's ability to detect the vulnerabilities with other security vendors to help secure all SAP users against possible future attacks.