News

SAP NetWeaver woes worsen as ransomware gangs join the attack
Multiple ransomware operators are trying to take advantage of the recently discovered, maximum severity flaw, affecting SAP ...
SAP patches second zero-day flaw exploited in recent attacks
SAP has released patches to address a second vulnerability exploited in recent attacks targeting SAP NetWeaver servers as a ...
SecurityWeek10d
Second Wave of Attacks Hitting SAP NetWeaver After Zero-Day Compromise
Threat actors are revisiting SAP NetWeaver instances to leverage webshells deployed via a recent zero-day vulnerability.
The Hacker News15h
BianLian and RansomExx Exploit SAP NetWeaver Flaw to Deploy PipeMagic Trojan
BianLian and RansomExx Exploit SAP CVE-2025-31324 for Full Access, Deploy PipeMagic and Brute Ratel in Multi-Nation Attacks.
TechRadar2d
SAP patches recently exploited zero-day in wake of NetWeaver server attacks
a 9.1/10 vulnerability in NetWeaver This one was chained with CVE-2025-31324, which was fixed in April Fortune 500 companies are apparently at risk SAP has patched a critical-severity zero-day ...
SecurityWeek7d
SAP Zero-Day Targeted Since January, Many Sectors Impacted
A recently disclosed SAP NetWeaver zero-day that has been targeted for remote code execution since January 2025.
Ransomware gangs join ongoing SAP NetWeaver attacks
Ransomware gangs have joined ongoing SAP NetWeaver attacks, exploiting a maximum-severity vulnerability that allows threat ...
CSOonline21d
SAP NetWeaver customers urged to deploy patch for critical zero-day vulnerability
Attackers have been exploiting a critical zero-day vulnerability in the Visual Composer component of the SAP NetWeaver application server since early this week. SAP released an out-of-band fix ...