Subscribe / Unsubscribe Enewsletters | Login | Register

Pencil Banner

Trojan program steals log-in credentials, other sensitive data from SAP client applications

Lucian Constantin | Nov. 22, 2013
A recently discovered malicious program steals log-in passwords and other sensitive information from SAP client applications and allows cybercriminals to access SAP servers from infected workstations.

Depending on the permissions of the stolen SAP credentials, in addition to stealing data, attackers can set up rogue payments or disrupt business operations.

According to ERPScan, 86 percent of companies on the Forbes 500 list use SAP software.

To mitigate the damage caused by possible attacks on their SAP systems, companies should grant users the minimum access privilege level required to complete their job, should implement two-factor authentication, run anti-malware programs and network intrusion detection systems, train their employees to avoid malware infections and keep the software running on their workstations up to date, McDonald said.

"This trojans targeting of businesses, as opposed to individuals, is an alarming move and we will be monitoring this for further developments to protect and inform our customers," he said.

 

Previous Page  1  2 

Sign up for MIS Asia eNewsletters.