ltabo

SAP Remote Function Call (RFC) Vulnerabilities in 2023 ltabo Thu, 07/06/2023 - 13:44   In 2007, Onapsis CEO & Co-founder Mariano Nuñez presented several vulnerabilities and attacks affecting the RFC Protocol at Black Hat Europe. That presentation became a call-to-action for the research community to dedicate time into improving the ... Read More

How to Securely Introduce Explicit AUTHORITY-CHECKS into Custom RFC-Enabled Function Modules ltabo Tue, 06/20/2023 - 13:39 Compliance Aspects Every SAP application provides business-related authorization objects that clearly define specific activities for individual business entities. They are designed to easily fulfill and monitor audit requirements like traceability of assigned authorizations and ... Read More

Good Things Come in Threes: Onapsis Recognized Yet Again in the Gartner Magic Quadrant ltabo Thu, 05/18/2023 - 15:38   Today, I’m proud to announce that Onapsis has once again been recognized in the Gartner® Magic Quadrant™ for Application Security Testing, making this the third consecutive year in a row ... Read More

SAP Security Patch Day: May 2023 ltabo Tue, 05/09/2023 - 14:36   Highlights of May SAP Security Notes analysis include twenty-five new and updated SAP security patches released, including three HotNews Notes and nine High Priority Notes. Several critical vulnerabilities in SAP 3D Visual Enterprise License Manager’s web interface should ... Read More

Strengthen ERP Cybersecurity with Onapsis, the Market Leader in SAP and Oracle Security ltabo Thu, 04/20/2023 - 20:44   LEARN MORE As the recent P4CHAINS vulnerabilities have shown, ERP security is more than just a single vulnerability or one missing critical patch. Sophisticated threat actors chain medium criticality vulnerabilities - ... Read More

P4CHAINS Vulnerabilities ltabo Tue, 04/11/2023 - 13:44   Where the Risk from the Whole Is Greater than the Sum of Its Parts On April 11, 2023, as part of the regular cadence of security patches, SAP released the patch for another security vulnerability identified by Pablo Artuso, part of Onapsis ... Read More

SAP Security Patch Day: April 2023 ltabo Tue, 04/11/2023 - 13:23   Critical Vulnerabilities in SAP Diagnostics Agent Poses Risk To All SAP Systems Highlights of April SAP Security Notes analysis include: April Summary -Twenty-four new and updated SAP security patches released, including five HotNews Notes and one High Priority ... Read More

Better Together: A New Strategic Partnership Between Onapsis & SAP ltabo Tue, 03/21/2023 - 21:14 Onapsis was originally founded to solve one of the most critical gaps in the cybersecurity industry: the protection of the business applications that power the global economy. With SAP customers distributing 78% of the world’s ... Read More

SAP Patch Day: March 2023 ltabo Tue, 03/14/2023 - 13:54   Critical Vulnerabilities patched in SAP NetWeaver AS ABAP / Java and in SAP BusinessObjects Highlights of March SAP Security Notes analysis include: March Summary—Twenty-one new and updated SAP security patches released, including six HotNews Notes and four High Priority ... Read More

National Cybersecurity Strategy & Commercial Software Security ltabo Fri, 03/03/2023 - 14:59   A Bold Step Forward to Incentivize Software Providers to Build More Secure Solutions One of the boldest proposals of the new National Cybersecurity Strategy by the Biden Administration is to “Shape Market Forces to Drive Security and ... Read More