Onapsis Webinar

Onapsis Research Labs Briefing on SAP CVE-2017-12637

ON DEMAND

CISA recently updated their Known Exploited Vulnerabilities (KEV) catalog with an SAP vulnerability: CVE-2017-12637. When exploited, this vulnerability affecting SAP Netweaver AS Java application servers can enable unauthenticated threat actors to take full control of unprotected SAP systems. 

While this is a known security vulnerability that was promptly patched by SAP in 2017, Onapsis Research Labs have observed this issue being present in several environments to this day.

Onapsis Research Labs has also recently identified active exploitation via our global SAP Threat Intelligence Network, and we will be sharing our findings with the public.

And, in the meantime, check out our CVE-2017-12637 analysis blog.

Onapsis Webinar

SAP BTP und Cyber Security: Risiken minimieren und Abläufe in Produktion und Logistik sichern

SAP BTP und Cyber Security: Risiken minimieren und Abläufe in Produktion und Logistik sichern

ON DEMAND

Sichere SAP-Lösungen für Logistik und Produktion mit RISE und BTP

Ein Webinar im Rahmen der 20. IT-Onlinekonferenz: Produktions- und Logistikprozesse mit SAP – Die führende Konferenz für SAP-gestützte Produktion und Logistik.

Die digitale Transformation in Produktion und Logistik, angetrieben durch SAP RISE und die SAP Business Technology Platform (BTP), eröffnet Unternehmen neue Möglichkeiten zur Prozessoptimierung. Gleichzeitig entstehen Herausforderungen, diese geschäftskritischen Systeme sicher und compliant zu gestalten.

In diesem Webinar erfahren Sie, wie Onapsis Unternehmen unterstützt, SAP-Anwendungen in Cloud- und hybriden Umgebungen zu schützen, Sicherheits- und Compliance-Anforderungen zu erfüllen und die Integrität sensibler Daten und Prozesse sicherzustellen.

Highlights:

  • Effiziente Sicherheitslösungen für hybride SAP-Landschaften.
  • Echtzeit-Bedrohungserkennung und Schwachstellenmanagement.
  • Best Practices für SAP RISE und BTP.

SAPinsider Magazine: March 2025 Edition

SAPinsider Magazine: March 2025 Edition

A Must-Read Interview for Every SAP Leader 

What is the critical blind spot that leaves most business-critical SAP applications exposed? In this exclusive cover story from the March 2025 edition of SAPinsider Magazine, Onapsis Co-Founder and CEO, Mariano Nunez, shares his unique perspective from 15 years on the front lines of SAP security. This is your opportunity to gain hard-won insights on mastering the shared responsibility model and defending against a threat landscape where ransomware attacks on SAP are up 400%.

In This Exclusive Interview, You’ll Discover:

  • The hard data behind the SAP threat explosion, including a 400% increase in ransomware attacks and a 490% surge in criminal forum discussions on SAP exploits.
  • Why traditional security tools fail to protect the SAP application layer and the critical blind spot most organizations have in their security posture.
  • A clear breakdown of the SAP Shared Responsibility Model and what your team—not SAP or your cloud provider—is ultimately responsible for securing.
  • Real-world examples of how a global retailer finished its ERP migration six months ahead of schedule and a chemical manufacturer uncovered a long-standing insider threat.

About the Publication

SAPinsider is the largest and fastest-growing SAP membership group worldwide, with more than 1.2 million members across 205 countries. It provides invaluable information, strategic guidance, and road-tested advice for SAP professionals.

ERPToday: March 2025 Edition

ERPToday: March 2025 Edition

Insights from Onapsis CEO, Mariano Nunez

The ERP threat landscape has evolved. Traditional security measures have created a critical blind spot, and attackers are exploiting it. In this exclusive cover story from the March 2025 edition of ERP Today Magazine, Onapsis Co-Founder and CEO, Mariano Nunez, shares his journey and provides a strategic roadmap for protecting your business-critical applications in the cloud era. Learn why proactive, application-layer security is the key to accelerating your transformation without introducing unnecessary risk.

In This Cover Story, You’ll Learn:

  • The hard data behind the ERP threat explosion, including a 400% increase in ransomware attacks targeting SAP systems and a 490% surge in criminal forum discussions on SAP exploits.
  • Why traditional security like firewalls and Segregation of Duties (SoD) controls are no longer sufficient and fail to protect the critical SAP application layer.
  • A clear breakdown of the Shared Responsibility Model and what your team—not SAP or your cloud provider—is ultimately responsible for securing in the cloud.
  • How Onapsis’s three-pronged approach to proactive ERP security (Assess, Defend, and Control) provides comprehensive protection for your environment.
  • Real-world examples of how a global retailer finished its migration six months early and under budget and how a chemical company uncovered long-hidden insider fraud. 

About the Publication

ERP Today is an independent publication for the enterprise technology community, providing a voice for C-level executives and IT leaders across the global SAP and Oracle ecosystems.