Partner Content

Anatomy of an Attack: Breaking Down a C2 Incident on SAP

Ashley Barrington

Key Takeaways

A compromised SAP system was transformed into a command and control bot through a vulnerability exploit, leading to significant security risks.

The malicious activity included the injection of a harmful file and the installation of additional software, showcasing the extent of the attack on the SAP environment.

The incident culminated in a distributed denial of service attack, emphasizing the need for robust security measures and continuous monitoring of SAP systems

Onapsis Research Labs detailed a security breach where an SAP system was compromised, transformed into a command and control bot through a vulnerability, and used to launch a distributed denial of service attack via Cloudflare.

Please enable JavaScript in your browser to complete this form.
  • Partners. <br><br>By enrolling in the ERP Today Membership community you receive access to member only content that is provided courtesy of ERP Today and our <a target="_blank" href=https://erp.today/anatomy-of-an-attack-breaking-down-a-c2-incident-on-sap/"https://erp.today/partners/">Partners. You will only be asked to enroll once but can change your profile at any time by going to your profile and clicking to edit your profile. If you would prefer to review content provided by ERP Today and ERP TodayPartners and not be contacted by those <a target="_blank" href=https://erp.today/anatomy-of-an-attack-breaking-down-a-c2-incident-on-sap/"https://erp.today/partners/">Partners please do not check the box submitting your willingness to be contacted. <br><br> You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our <a target="_blank" href=https://erp.today/anatomy-of-an-attack-breaking-down-a-c2-incident-on-sap/"https://erp.today/privacy-policy/">Privacy Policy</a>. <br><br>By clicking submit, you consent to allow ERP Today to store and process the personal information submitted above to provide you the content requested." aria-errormessage="wpforms-128360-field_15_1-error" required >
YOU MIGHT ALSO LIKE
Partner ContentSecurity
Deloitte & Onapsis Strategic Alliance
Partner ContentSecurity
ERP Security for Utility Companies – Onapsis Partners with SNOPUD to Secure Critical SAP Applications
Partner ContentSecurity
Hash Cracking and the SAP Landscape

Partners Mentioned

Key Topics Discussed

Follow us on LinkedIn for the latest updates