Onapsis recently had the pleasure of interviewing Chris Wysopal, co-founder and CTO of Veracode as well as a member of the Onapsis Board of Advisors, about the misconception businesses have regarding ERP applications. “The misconception around ERP systems and they are business-critical systems, is because the security community hasn’t had access to those systems. You need access before you can attack and research and publish… so because of the way these systems are closely held and controlled and expensive, they’re not as open as just attacking a web application…” Wysopal goes on to discuss that the critical data stored in these systems is still vulnerable and the stakes will continue to rise as these business-critical applications become more valuable. “It’s pretty significant that if an attacker was able to get access to these systems with the right knowledge they would definitely be able to… stop critical transactions.”
Watch the full interview below!