Hackers were spotted exploiting a critical SAP NetWeaver vulnerability tracked as CVE-2025-31324 to deploy the Auto-Color ...

Attackers tried chaining the just-patched SAP Netweaver bug with the stealthy Auto-Color Linux RAT for a multi-stage ...

SAP fixed the issue in late April 2025, but at the time, multiple security firms were already seeing attacks in the wild.

SAP flaw CVE-2025-31324 exploited to deploy Auto-Color malware at U.S. chemicals firm; Linux systems targeted.

A new backdoor malware campaign targeting Linux systems and exploiting a critical vulnerability in SAP has been uncovered by ...

Earlier this week, SAP patched a separate, also critical, zero-day vulnerability in NetWeaver server. This one, it said, was being chained in attacks targeting some of the world’s biggest ...

SAP fixed CVE-2025-42999, a 9.1/10 vulnerability in NetWeaver This one was chained with CVE-2025-31324, which was fixed in April Fortune 500 companies are apparently at risk ...

Bottom line: Numerous NetWeaver components (e.g., Portal, BW) are mature and can be used generally across SAP and third-party applications. Some components (e.g., XI, MDM) are less mature but ...

SAP has renamed its NetWeaver Exchange Infrastructure product, which becomes NetWeaver Process Integration, and given it an event-driven design that lets companies monitor business processes and ...

As NetWeaver components mature and are fully integrated, SAP customers will have the opportunity to achieve lower total cost of ownership relative to deploying numerous, competing technology ...

SAP used to have a desire to compete head-on in middleware with rivals Oracle and IBM, but not anymore, Rymer added. While there’s a chance SAP will try to “resuscitate” NetWeaver ...