Red Canary Office Hours: Episode 13 - The exploitation of SAP NetWeaver CVE-2025-31324

Red Canary Office Hours: Episode 13 – The exploitation of SAP NetWeaver CVE-2025-31324

This week on Red Canary Office Hours, Keith breaks down the latest Ops Insight on the exploitation of SAP NetWeaver CVE-2025-31324.

He’s then joined by Sam Straka, Group Product Manager at Red Canary, for a deep dive into Conditional Access policies.

Resources mentioned in this episode:

Requests? Questions? Send us an email: officehours@redcanary.com

Join us every Tuesday at 1PM ET for fresh insights from the front lines and unfiltered takes on the biggest cybersecurity news and trends. Sign up now.

Timestamps:

00:05 – Welcome to Red Canary Office Hours
01:58 – Ops Insight: SAP NetWeaver CVE-2025-31324
05:37 – Conditional Access policies
07:40 – Why Conditional Access?
13:38 – Conditional Access: Entra ID vs. Okta
16:37 – 5 required Conditional Access policies

Not seeing the form?Email marketing@redcanary.com and we’ll help you get registered. Or you can always contact us.

Related Resources

Critical vulnerability in SAP NetWeaver enables malicious file uploads

Articles| Threat intelligence

Critical vulnerability in SAP NetWeaver enables malicious file uploads

Intelligence Insights: April 2025

Articles| Threat intelligence

Intelligence Insights: April 2025

Red Canary Office Hours: Episode 12 – Featured threat: Arechclient2

Videos| Threat intelligence

Red Canary Office Hours: Episode 12 – Featured threat: Arechclient2

Red Canary Office Hours: Episode 11 – Atomic Red Team

Videos| Threat intelligence

Red Canary Office Hours: Episode 11 – Atomic Red Team

Red Canary Office Hours: Episode 13 – The exploitation of SAP NetWeaver CVE-2025-31324

Timestamps:

Related Resources

See Red Canary in action

Schedule your demo now