Can SAP Systems be Affected by Ransomware and How to Protect, 2019 trends,

Ransomware and How to Protect, 2019 trends

By Shawn Abraham, a cyber-security professional currently working as Content Writer and Marketer at MalwareFox. He is responsible for creating awareness of Malware threats and protecting Privacy of computer users.

Companies today have come to realize the importance of an automated system of management. With the increase in complexity when it comes to the management of the daily activities of a company; SAP (System, Application, and product) have become a powerful tool in achieving maximum efficiency.

Increase in efficiency and productivity is the ultimate goal of every company. Human resources, logistics, financial, and other related business areas are effectively monitored and managed by SAP.

Concurrent with an increase in the technology used for the execution of complicated taxes involved in the running of businesses and companies, there is also a proportional rise in cybercriminals. According to Ransomware Statistics published on MalwareFox, 6 out 10 IT and Risk decision makers admit that their organisation suffered Ransomware attack. Cybercriminals are always looking to take advantage of the numerous loopholes in SAP systems.

Can SAP Systems be Affected?

Ransomware is a type of malicious software that block access to a computer system or data, usually encrypting it. This software does harm to force the victim to pay a fee to the attacker.

The SAP system is very vulnerable to malware attack, especially those without any or minimal form of software protection.

In 2009 and 2013, the German software giant SAP informed companies, on guidance, on how to best configure security settings. According to compiled data from Onapsis, 90% of affected SAP systems are not protected adequately. A company can be brought to a standstill in a short time.

A cybercriminal can achieve anything after hacking of a companies’ SAP system. Ranging from stealing of sensitive information, modifying of any present information, carry out financial fraud, money withdrawal, or could disrupt and sabotage a company’s SAP system.

Attack on SAP systems around the world could lead to extreme damages resulting to cost ranging to billions of dollars. This attack is one of the most significant threats to companies.

How Can SAP System Get Affected?

There are various ways through which ransomware infects SAP systems.

In the application layer alone, there are several exploitable severe design flaws. Also, there are various SAP system default accounts that give full access to an SAP system.

Other means to gain access to an SAP system includes, via the operating system layer and the database layer. These layers could give full control of SAP systems to a hacker if not adequately secured.

One example of gaining access to an SAP system is by exploiting loopholes in the transport mechanisms of SAP systems.

The ability to upload content into SAP systems is one of the challenging loopholes in the SAP system. This loophole has to do with the fact that the SAP system allows users to attach documents or files to upload. Often, companies assume that the anti-virus distributed to every server will automatically catch any malware uploaded into an SAP application.

This assumption has been proven to be wrong. With the increase in complexity of malware, in most cases, the initial infection after upload will leverage an unpatched vulnerability. This infection will create a persistent copy of itself by injecting its code into an operating system-level process. It does this by modifying system files in a way that ensures continuous running of the malware on an SAP system. The anti-virus software covers this vulnerability.

Vulnerable SAP systems could be remotely gained access to by authenticated hackers meaning the SAP user IDs and passwords are not a requirement. Using this method could compromise the SAP platform. This method gives access to the hackers allowing them to obtain information or shut down the systems.

The simple fact is that most vulnerable SAP systems attackers need only have network access to the SAP production systems. This access will enable them to exploit the various security flaws in many SAP systems worldwide.

How to Protect/ Prevent

Attacks to SAP systems present in numerous ways, and SAP systems are a significant target as they contain critical data for companies. To avoid a computer from getting infected, firms/companies often resort to the patch and patch system of security, as security solution keeps getting more and more sophisticated. SAP releases patches every month, security patches are installed on the SAP system.

The security consultant of Sogeti, Mathieu Geli, said that there’s a danger if a company’s security settings are not configured correctly. A hacker can gain access by tricking the system into thinking they are another SAP product.

SAP said in a statement shared with Reuters that it always strongly recommends installing security fixes as they are released. “Security is a collaborative process, so our customers and  partners need to safeguard their systems as well.” This company goes on to say that the use of conventional anti-virus does close to nothing in preventing the system from getting infected.”

In conclusion, cybercrimes are on the rise, and the methods of attack on SAP systems are getting even more sophisticated. It’s no secret that SAP systems have become a significant target to hackers. Organizations not paying close attention to their security system could suffer dire consequences. By accessing SAP systems, cybercriminals can steal relevant data like customers list, financial information, human resources information. These data can get sold out and used to hurt the company. Ransomware has brought several companies to a standstill, leading to costs ranging to billions of dollars. Therefore, it’s no surprise that so many companies now pay close attention to the security systems in place that can best deal with malware.

Since there are numerous ways for hackers to gain access to an SAP system, one can never be sure of the integrity of a company’s security system. Though with the release of the monthly security patches by SAP, the cybercrimes on companies are on the rise. Hackers can quickly weaponize a security patch as soon as it comes out.

Some companies can also fall behind on patching or fall outside the time window before they weaponize a patch.

The best way, therefore and currently is for the organization to prioritize patching. This patching is essential as it is the key to minimizing the risk. Furthermore, companies need to identify which area of the SAP system is more vulnerable. By doing so, they detect their risk tolerance, and therefore, what they need to patch right now.

More information about Irish Tech News and the Business Showcase

FYI the ROI for you is => We now get over 1.5 million monthly views, and up to 900k monthly unique visitors, from over 160 countries. We have over 860,000 relevant followers on Twitter on our various accounts & were recently described as Ireland’s leading online tech news site and Ireland’s answer to TechCrunch, so we can offer you a good audience!

Since introducing desktop notifications a short time ago, which notify readers directly in their browser of new articles being published, over 16000 people have now signed up to receive them ensuring they are instantly kept up to date on all our latest content. Desktop notifications offer a unique method of serving content directly to verified readers and bypass the issue of content getting lost in people’s crowded news feeds.

Drop us a line if you want to be featured, guest post, suggest a possible interview, or just let us know what you would like to see more of in our future articles. We’re always open to new and interesting suggestions for informative and different articles. Contact us, by email, twitter or whatever social media works for you.

If you would like to have your company featured in the Irish Tech News Business Showcase, get in contact with us at Simon@IrishTechNews.ie or on Twitter: @SimonCocking