Shadow Servers have identified 454 vulnerable SAP NetWeaver systems affected by a critical zero-day flaw, CVE-2025-31324, allowing unauthenticated file uploads and potential system compromise. Discovered by ReliaQuest in April 2025, the vulnerability targets an endpoint lacking authorization checks. SAP released an emergency patch, urging immediate application to mitigate risks. Regular monitoring and patching are strongly recommended.
M&S: WFH staff locked out of systems amid cyber attack fallout – Retail Gazette
M&S employees working from home faced access issues to company systems due to the ongoing consequences of a cyber attack. The situation has disrupted operations,
