SAP reveals security holes in certain cloud products

Internal review discovered security issues in seven of SAP’s cloud-based products

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

German software giantSAPhas announced its plans to notify nine percent of its 440,000 customers regarding recently discovered security issues with several of its cloud-based products.

The products in question include the likes of SAP Success Factors, SAP Concur, SAP/CallidusCloud Commissions, SAP/Callidus Cloud CPQ, SAP C4C/Sales Cloud, SAP Cloud Platform, and SAP Analytics Cloud.

In a recently publishedadvisory, SAP explained that the security issues were discovered during an internal review, saying:

“These findings were not identified in response to a security incident. As SAP continues with its review, it does not believe that any customer data has been compromised as a result of these issues. In an effort to ensure that the affected products meet relevant terms and conditions and in addition to technical remediation, SAP has decided to update its security-related terms and conditions.”

Security issues

Security issues

SAP did not explain the nature of the security issues it found in its cloud-based products as they have yet to be fixed. However, it has already begun working on remediation efforts to patch all of the impacted products which should receive security updates during Q2.

While SAP has already adjusted its revenue to account for thecoronavirus pandemic, the company said that the cost of these security updates will likely not impact its current 2020 financial outlook.

SAP has also begun individually notifying each of its affected customers and the number of those impacted by the security issues in its cloud-based products is believed to be close to 40,000.

Are you a pro? Subscribe to our newsletter

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

ViaZDNet

After working with the TechRadar Pro team for the last several years, Anthony is now the security and networking editor at Tom’s Guide where he covers everything from data breaches and ransomware gangs to the best way to cover your whole home or business with Wi-Fi. When not writing, you can find him tinkering with PCs and game consoles, managing cables and upgrading his smart home.

Washington state court systems taken offline following cyberattack

Is it still worth using Proton VPN Free?

Mount-It Electric Standing Desk review