Companies are falling behind on securing their SAP environments


May 7, 2015

More than 95 percent of SAP systems deployed in enterprises are exposed to vulnerabilities that could lead to a full compromise of business data, a security firm claims.

Onapsis, a Boston-based company that specializes in SAP security audits, also found <http://www.onapsis.com/onapsis-research-study-reveals-top-three-cyber-attack-vectors-sap-systems>  that the average time-to-patch for SAP vulnerabilities is more than 18 months — 12 months for SAP to issue fixes and 6 months for companies to deploy them.

This suggests that many companies are falling behind on SAP security, even though these systems hold some of their most critical and confidential information.