The SAP threat landscape is rapidly changing, with financially motivated cyber actors actively targeting business-critical applications. This session will highlight the latest threats to both on-premise and cloud-based SAP systems in 2025, using a recent, high-profile cyberattack as a

case study: In early September 2025, a global manufacturer's operations were paralyzed by an attack attributed to the group "Scattered LAPSUS$ Hunters." The group reportedly gained access by exploiting a critical SAP vulnerability, underscoring how quickly new exploits are being weaponized. This incident, which caused an estimated $6.8 million in daily losses and shut down production, highlights a trend of attackers leveraging vulnerabilities like CVE-2025-42957 and others for operational disruption and data theft.

We will also discuss how organizations can protect themselves in the era of RISE with SAP, where security is a shared responsibility. The session will cover strategies for continuous monitoring and safeguarding your systems against modern threats, including the 400% increase in ransomware attacks involving SAP data and the compromise of thousands of SAP credentials by infostealers. The Onapsis team will provide exclusive threat intelligence and actionable insights to help your organization defend against these sophisticated attacks.