How the Proposed OWASP TOP 10 Changes Would Affect SAP and Oracle

While only in release candidate form, the current proposed changes to the OWASP Top 10 Application Security Risks provide clear guidance for any enterprise that needs to secure and protect their critical enterprise business applications. In general, the OWASP Top 10 and these two additions can be directly applied to an approach and methodology for securing ERP based business applications and systems.

Now Announcing: Splunk Integration with OSP!

As the Onapsis Security Platform continues to become more widely adopted throughout global enterprises, we have received an overwhelming number of requests to integrate OSP with our customer’s existing SIEM solutions. Based on these requests, we are excited to announce that we have officially launched an integration with Splunk Enterprise. This marks our second SIEM integration following IBM’s QRadar which we launched earlier this month.  

Reducing SAP Attack Exposure with Virtual SAP Security Patching

I’m excited to announce that Onapsis has just developed a new functionality to provide users with virtual patching for SAP systems. This new capability will allow organizations to have immediate protection from SAP specific vulnerabilities as soon as the Onapsis Security Platform identifies new cybersecurity risks and compliance violations. This is a huge achievement for business-critical application security! Now, information security and SAP BASIS teams will have the time they need to properly evaluate, test and apply the related SAP security notes/patches.

How SAP Advisories Affect You

This week you will have seen from our twitter account, (@Onapsis) or other security news feeds like PacketStorm regarding the publication of information about six advisories discovered by the Onapsis Research Labs effecting SAP. In a past blog, Securing Your SAP Through Research, I talked about the importance and value of the security research we do here at Onapsis.

Holding the attack in your hand, how organization’s ERP systems are the target of Zombie Zero

Picture someone walking around a section of your business and simply scanning your business critical data, financial records and other ERP information away. It sounds like something out of Star Trek, but in a report published by Antone Gonsalves on CSO Online this has already happened to at least half a dozen large European and US Companies.

Pages