Threat agents have been noted taking advantage of a recently fixed significant SAP NetWeaver vulnerability to deploy the Auto-Color backdoor in an assault aimed at a U.S.-based chemical corporation in April 2025.
“During a span of three days, a threat agent penetrated the client’s network, tried to download various dubious files, and interacted with harmful infrastructure associated with Auto-Color.”