Menu
SAP concedes some cloud products have fallen short on security

SAP concedes some cloud products have fallen short on security

The shortcomings were not identified in response to a specific security incident, the German company said

Credit: Dreamstime

Business software group SAP has disclosed that some of its cloud products have not meet contractual or statutory security standards and said it would take remedial action to fix the problem as soon as possible.

The shortcomings were not identified in response to a specific security incident, the German company said, nor did it believe that any customer data had been compromised as a result of those issues.

While SAP, Europe's most richly valued technology company, declined to elaborate on a statement it issued overnight, the news follows management turmoil and a reduction to its profit forecast due to the coronavirus pandemic.

Analysts said it could dampen enthusiasm among SAP's client base to back a digital transformation in which it is seeking to shift the operation of enterprise, human resources and marketing applications to off-site datacentres from its traditional model of putting servers at customer locations.

"Events like this don't help SAP's reputation, and both existing and new customers of SAP will likely spend more time digging into SAP's product security now," said Jefferies analyst Julian Serafini.

SAP shares fell by 0.4 per cent, underperforming a gain of 1.4 per cent in Germany's 30-share DAX index of blue-chip stocks.

SAP, founded by a group of IBM alumni in the 1970s, recently ended its dual leadership structure with co-CEO Jennifer Morgan leaving, bringing an end to the six-month tenure of the first woman to head a top-tier German listed company.

American Morgan was responsible for SAP's cloud operations. Christian Klein, a protege of co-founder and Chairman Hasso Plattner, is now sole CEO of the company based in the southwest German town of Walldorf.

Outlook maintained

SAP said it had initiated action to address the shortcomings it has identified in relation to contractually agreed or statutory security standards. This work would be completed to a large extent in the second quarter.

"SAP is informing affected customers – approximately 9% of SAP's 440,000 customers - and providing full product and customer support," the company said.

"The expenses related to the remediation are expected to be covered within the range of SAP's current 2020 financial outlook."

The products affected range from human resources to travel and expenses management, sales and analytics. Gartner analyst Christian Hestermann estimated that the remedial measures would affect the bulk of SAP's cloud customer base.

SAP also named a new top security team, appointing Tim McNight as Chief Security Officer, Richard Puckett as Chief Information Security Officer and John Coovert as Global Head of Physical Security.

It has opened a new "Cyber Fusion Center" in Newtown Square, PA, as a hub for its global security operations.

The company denied that the security measures were taken in response to a specific hacking incident.

Asked specifically whether there was any link to the exploits of a group of suspected Chinese cyber-spies known as "Cloud Hopper" that penetrated the IT systems of several large companies, a spokeswoman said: "None whatsoever."

(Additional reporting by Jack Stubbs; editing by David Evans)


Follow Us

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

Tags SAP

Events

Featured

Slideshows

Meet the Reseller News 30 Under 30 Tech Awards 2020 winners

Meet the Reseller News 30 Under 30 Tech Awards 2020 winners

This year’s Reseller News 30 Under 30 Tech Awards were held as an integral part of the first entirely virtual Emerging Leaders​ forum, an annual event dedicated to identifying, educating and showcasing the New Zealand technology market’s rising stars. The 30 Under 30 Tech Awards 2020 recognised the outstanding achievements and business excellence of 30 talented individuals​, across both young leaders and those just starting out. In this slideshow, Reseller News honours this year's winners and captures their thoughts about how their ideas of leadership have changed over time.​

Meet the Reseller News 30 Under 30 Tech Awards 2020 winners
Reseller News Exchange Auckland: Beyond the myths — how partners can master cloud security

Reseller News Exchange Auckland: Beyond the myths — how partners can master cloud security

This exclusive Reseller News Exchange event in Auckland explored the challenges facing the partner community on the cloud security frontier, as well as market trends, customer priorities and how the channel can capitalise on the opportunities available. In association with Arrow, Bitdefender, Exclusive Networks, Fortinet and Palo Alto Networks. Photos by Gino Demeer.

Reseller News Exchange Auckland: Beyond the myths — how partners can master cloud security
Reseller News welcomes industry figures at 2020 Hall of Fame lunch

Reseller News welcomes industry figures at 2020 Hall of Fame lunch

Reseller News welcomed 2019 inductees - Leanne Buer, Ross Jenkins and Terry Dunn - to the fourth running of the Reseller News Hall of Fame lunch, held at the French Cafe in Auckland. The inductees discussed the changing face of the IT channel ecosystem in New Zealand and what it means to be a Reseller News Hall of Fame inductee. Photos by Gino Demeer.

Reseller News welcomes industry figures at 2020 Hall of Fame lunch
Show Comments