Software security expert warned hackers could steal or destroy corporate data

SAP to release software security patch

Business software company SAP says it will release a patch to customers to fix a security flaw in its software.

SAP made the announcement after a security expert warned that flaws in the design of its business management software could allow hackers to easily break into corporate computer systems.

The vulnerabilities were revealed at the Black Hat hacking conference in Las Vegas this week by Alexander Polyakov, chief technology officer of software security firm ERPScan.

He said the flaws affect systems that corporate workers use to access their software systems over the internet.

"SAP is aware of this vulnerability since we are working very closely with Alexander Polyakov on this issue," a SAP spokeswoman said.

"SAP will deliver an appropriate patch to its customers on August 9."

Polyakov was one of dozens of hacking experts to make presentations at the annual gathering, which is attended by security professionals.

He said in an interview that he can set up a query using Google's search engine that would identify systems vulnerable to attack.

In some cases, he said, he could set up fictional accounts to access those systems, granting those users wide access to secret corporate data, and could delete some valuable data by overwriting databases with "trash".

Recent articles

Info Message

Our sites use cookies to support some functionality, and to collect anonymous user data.

Learn more about IET cookies and how to control them