Summary: Cybercriminals are increasingly utilizing advanced tools requiring less skill, making it easier for anyone to execute attacks. A critical flaw in SAP NetWeaver has been exploited, and new phishing kits with generative AI lower the barrier for novice attackers. Overall, organizations must react promptly to emerging threats as delays increase their vulnerability.
Affected: Organizations using SAP NetWeaver, general internet users, businesses susceptible to phishing attacks
Keypoints :
- Attackers are equipped with advanced, user-friendly tools that lower the skill level required to execute attacks.
- A critical SAP NetWeaver vulnerability has a CVSS score of 10.0 and allows for unauthorized access and code execution.
- New phishing kits and tactics are employing generative AI to enhance the sophistication of scamming methods.
Source: https://thehackernews.com/2025/04/weekly-recap-critical-sap-exploit-ai.html