CONTACT AN SAP EXPERT
Search
CONTACT AN SAP EXPERT

SAP Security Essentials for Utility Providers

/in /by

ON DEMAND

It’s no secret that true visibility and understanding of risk to SAP landscapes can be challenging to navigate, especially for utility companies. The good news? There is a path forward whether you are just starting your SAP security journey or looking to optimize your security practices.

Join SAP & Onapsis to explore Oklahoma Gas & Electric Company’s (OG&E) comprehensive approach to SAP security. They will share their maturity journey and integrated approach to gain true visibility and velocity when it comes to protecting their SAP landscape.

In this session, we’ll cover:

  • Factors that have made SAP security a necessity, not a nice to have, over the last decade.
  • Insights from a leader in the utilities space about how to leverage security as a tool, rather than viewing it as an obstacle.
  • Recommendations for immediate, short-term, and long-term actions to protect your most critical assets and data effectively.

Don’t miss this opportunity to learn best practices for protecting your SAP landscape.

Threat Briefing: Unpacking the Impact of Vulnerabilities Affecting SAP P4

/in /by

ON DEMAND

Over the past few months, SAP has released a number of Security Notes (patches) addressing a family of vulnerabilities discovered and reported by the Onapsis Research Labs. This family of vulnerabilities has CVSS scores ranging in criticality from 5.3 to 10. Most of these vulnerabilities are related to the SAP P4 protocol itself. And while chained vulnerabilities historically are not easily exploitable, they tend to be a favorite tactic for more sophisticated threat actors.

Pablo Artuso of Onapsis Research Labs is credited with discovering this large family of related, chainable vulnerabilities as “P4CHAINS.” In this presentation, Artuso will walk through a recap of his and Yvan Genuer’s Black Hat USA presentation, including:

  • What is P4CHAINS?
  • The potential impact of P4CHAINS
  • The vulnerability chain(s)
  • Elevated impact from chaining
Onapsis Podcasts

Protecting Your Company from SAP Cyber Threats

/in /by

Reflecting on over three decades of experience in tackling enterprise security, Founders & CEO’s Mariano Nunez (Onapsis) and Richard Hunt (Turnkey) will share their lessons learned and provide practical tips and best practices for securing your organization. We will examine how the approach to SAP security has shifted and the most significant threats facing organizations today and where SAP security fits within the larger context of cybersecurity.

Onapsis Podcasts

1000 Reasons: Lessons Learned from a Decade of Business-Critical Application Security (Fireside chat with JP and Mariano)

/in /by

Over a decade ago, Onapsis was founded in a small office in Buenos Aires, Argentina. Today, the organization has grown by leaps and bounds with a global presence and capabilities centered around protecting the critical systems of hundreds of the world’s leading brands including 20% of the Fortune 100. Join this fireside chat with two of the founders of Onapsis – Mariano Nunez, CEO, and JP Perez-Etchegoyen, CTO – to hear their take on the state of critical application security, thoughts on modern day SAP and Oracle attacks and threat actor groups, and a new way of thinking about ERP security to protect what matters most to your organization.

Onapsis Podcasts

ERP Digital Transformation: Big Trends and Bigger Security Challenges

/in /by

As global organizations increasingly adopt cloud technology and undertake digital transformation initiatives, under-resourced teams often prioritize agility and speed over security. This webinar will explore the latest trends influencing ERP digital transformation and the broader challenges of securing these essential systems. Drawing on Onapsis’ decade-long experience in safeguarding top global brands, the session will delve into significant security challenges and threats associated with digital transformation, using insights and real-world examples to illustrate the discussion.

Onapsis Podcasts

Shift Left: Five Reasons Why You Should Extend DevSecOps to Your SAP Environment

/in /by

What is DevSecOps? It is the integration of security best practices into the application development lifecycle. As digital transformation projects accelerate the creation of new code and applications, security often takes a backseat to business application output. With the average SAP system containing over 2 million lines of custom code, large global enterprises are increasingly concerned about the vulnerability of their critical applications. Join this webinar to understand why you should integrate your SAP application development into a comprehensive DevSecOps framework and learn best practices for getting started with SAP development.

Onapsis Podcasts

The ERP Black Box: Five Reasons Why Your Vulnerability Management Program Must Include Your ERP Landscape

/in /by

Often seen as a “black box” for several reasons, SAP and Oracle application landscapes present significant challenges for modern security professionals, resulting in a layered security approach around critical systems. However, neglecting to include these ERP applications in your vulnerability management program makes your organization more vulnerable to security breaches and data loss. In this webinar, Onapsis will present five compelling reasons to demystify these systems and integrate SAP and Oracle applications into your overall vulnerability management strategy.

Onapsis Research Labs Briefing: The Latest Threats to SAP Applications July 2023

/in /by

ON DEMAND

Join the Onapsis Research Labs for a look back at an extremely active year of threats so far in 2023. The tactics, techniques, and procedures of threat actors continue to evolve while the number of potentially exploitable vulnerabilities and applications seem to grow every month. Join the Onapsis Research Labs for both a look back at the first half of 2023 with its elevated threat activity and observed trends as well as a look forward to the second half to help your organization better prepare for the latest threats posing the largest risk to your organizations. 

The Onapsis Research Labs

It’s the world’s leading team of security experts who combine their deep knowledge of critical ERP applications and decades of threat research experience to deliver impactful security insights and threat intelligence focused on the business-critical applications from SAP, Oracle, and SaaS providers. Onapsis Research Labs is, far and away, the most prolific and most celebrated contributor of vulnerability research by the SAP Product Security Response Team. No other research team comes close.

Sitemap  | Terms of Use | Privacy Policy   |  Quality Policy  |  Disclosure PolicySecurity Vulnerability Reporting Guidelines |  ©2025 Onapsis  |  All rights reserved