Tag: enterprise software
27 articles

Oracle E-Business Suite Exploited Before Public Exploit Code Release
Oracle E-Business Suite deployments were under attack from a critical vulnerability even before hackers made the exploit code publicly available, highlighting the severity of the threat. This precemptive strike underscores the need for urgent attention to secure E-Business Suite systems.

SAP Patches Critical Flaws in NetWeaver and Commerce Cloud
SAP has patched 15 vulnerabilities, including four critical flaws in NetWeaver and Commerce Cloud, to safeguard its core application platform and e-commerce solutions from potential threats. These critical fixes aim to protect businesses from severe security breaches.

OpenAI Drops Azure Exclusivity for Wider Enterprise Reach
OpenAI is shaking up its cloud distribution strategy, ending its exclusive partnership with Microsoft's Azure to reach more enterprises and meet them where they are. This move marks a significant shift for the AI company, allowing it to expand its reach beyond a single cloud provider.

Adaptavist Group Breach Sparks Imposter Email Scams
When security breaches strike, even the most trusted names can be compromised - and The Adaptavist Group is the latest example, with hackers using stolen credentials to gain access and now sending fake emails that could put your data at risk.

SAP Vulnerability Exposes High-Risk Data Breach Potential
A single flaw in widely-used business software can be devastating - and April's Patch Tuesday just revealed a critical SAP vulnerability with an alarmingly high severity score, exposing high-risk data breach potential. This pressing issue demands attention from vendors and security experts alike.

GlobalLogic Exclusive: Severe Oracle EBS Cl0p Attack
GlobalLogic pulls back the curtain on a severe Cl0p Oracle EBS attack. Learn what went wrong, who’s at risk, and the simple steps you can take now to protect your systems.

malware vaccines: Must-Have or Risky Defense?
Imagine tricking ransomware into thinking your Windows PC is already looted — that’s the bold idea behind “malware vaccines,” tiny spoofing markers meant to steer attackers away before they strike. Promising but far from foolproof, these proactive defenses could reduce hits if carefully tested and managed, yet they also risk breaking software, legal headaches, and an inevitable adversary response.

Oracle E-Business Suite Risky: Must-Have Breach Guide
Google’s Threat Analysis Group says the Clop ransomware gang accessed a large volume of data from Oracle E-Business Suite — a wake-up call for any org that hasn’t checked who holds the keys to its crown jewels. Now’s the time to hunt for shadow EBS instances, tighten access, and patch or segment vulnerable systems before attackers turn stolen data into extortion.

Oracle E-Business Suite: Stunning Critical Breach Risk
A zero-day in Oracle E-Business Suite, actively exploited by CL0P since Aug. 9, 2025, likely hit dozens of organizations and put payroll, financial and HR data at risk. Security teams and leaders are racing to contain the damage, patch systems and lock down access before attackers strike again.

Oracle E-Business Suite Critical Patch: Must-Have Fix
Oracle’s July patch closes the immediate Clop-linked weakness in E-Business Suite portals — but with thousands of internet-facing, heavily customized EBS installs still at risk, organizations need to patch, isolate access, and harden defenses now to avoid extortion.

Oracle E-Business Suite: Urgent Must-Have Patch
Oracle warned and patched critical E-Business Suite flaws in July 2025 — yet attackers are actively scanning and exploiting systems that haven’t applied the fixes, turning patch delays into real-world breaches. If your ERP runs on EBS, now’s the time to prioritize updates, isolate vulnerable modules, and tighten access controls before the next compromise hits payroll, procurement, or customer trust.

SAP NetWeaver flaw: Urgent Critical Risk, Must-Have Fix
A critical, unauthenticated RCE in SAP NetWeaver AS Java now has exploit code in the wild, meaning internet-facing servers can be commandeered without credentials. If you run NetWeaver, inventory exposed instances and apply patches or network mitigations immediately—this isn’t a routine update, it’s an emergency.

SharePoint RCE flaw: Urgent Critical Must-Have Patch
A newly disclosed SharePoint RCE is being actively exploited—apply Microsoft’s emergency patches immediately and scan for signs of compromise. Then harden access controls, rotate credentials, and verify backups so a single flaw can’t turn into a major breach.

Microsoft Probes Ongoing Access Problems with SharePoint Online
Microsoft investigates ongoing access issues with SharePoint Online, aiming to resolve user connectivity problems and improve overall experience.

Cisco Achieves a Flawless 10, But It’s for a Major Vulnerability in Its Communication Platform
Cisco scores a perfect 10 for its critical communication platform vulnerability, highlighting significant security concerns in its widely-used systems.

Embedded ‘b’ Password in Sitecore XP Raises Critical RCE Concerns for Enterprise Deployments
Sitecore XP’s embedded ‘b’ password flaw triggers critical RCE risks, threatening enterprise deployments and demanding immediate security fixes.

Ivanti Resolves EPMM Vulnerabilities Exploited in Targeted Remote Code Execution Attacks
Ivanti patches critical EPMM vulnerabilities exploited in targeted remote code execution attacks, safeguarding systems from emerging cyber threats.

SAP Addresses Second Zero-Day Vulnerability Amid Recent Cyber Attacks
Discover how SAP tackles its second zero‑day vulnerability amid recent cyberattacks, bolstering security measures to protect enterprise systems.

Exploring May 2025 SAP Patch Updates
Explore May 2025 SAP Patch Updates: key insights into security fixes, performance enhancements, and critical improvements to optimize your system.

Chinese hackers behind attacks targeting SAP NetWeaver servers
Chinese hackers behind targeted attacks on SAP NetWeaver servers exploit vulnerabilities, escalating global cybersecurity concerns.

Commvault Vulnerability CVE-2025-34028 Added to CISA KEV List Following Confirmed Exploitation
Commvault vulnerability CVE-2025-34028 confirmed exploited; added to CISA’s KEV list. Get key insights and crucial security updates.

Over 1,200 SAP NetWeaver servers vulnerable to actively exploited flaw
Over 1,200 SAP NetWeaver servers face an actively exploited flaw—urgent patching is essential to secure critical systems.

Oh, cool. Microsoft melts bug that froze Server 2025 Remote Desktop sessions
Microsoft melts bug that froze Server 2025 Remote Desktop sessions, restoring seamless connectivity and boosting remote work efficiency.

Emergency patch for potential SAP zero-day that could grant full system control
Urgent patch for SAP zero-day vulnerability now available; prevents exploitation that could grant full system control. Update immediately for protection.