JP Perez-Etchegoyen
As CTO, JP leads the innovation team that keeps Onapsis on the cutting edge of the Business-Critical Application Security market, addressing some of the most complex problems that organizations are currently facing while managing and securing their ERP landscapes. JP helps manage the development of new products as well as support the ERP cybersecurity research efforts that have garnered critical acclaim for the Onapsis Research Labs. JP is regularly invited to speak and host trainings at global industry conferences, including Black Hat, HackInTheBox, AppSec, Troopers, Oracle OpenWorld and SAP TechEd, and is a founding member of the Cloud Security Alliance (CSA) Cloud ERP Working Group. Over his professional career, JP has led many Information Security consultancy projects for some of the world’s biggest companies around the globe in the fields of penetration and web application testing, vulnerability research, cybersecurity infosec auditing/standards, vulnerability research and more.
Threat Actors Exploiting CVE-2025-31324 After Public Release of Exploit by ShinyHunters
Following the public exploit release for CVE-2025-31324, this advisory provides new analysis on the latest wave of attacks. See our full breakdown of new webshells, attacker TTPs, and vital next steps to secure your SAP systems.
New Exploit for Critical SAP Vulnerability CVE-2025-31324 Released in the Wild
A new exploit for CVE-2025-31324 has been made public as of August 15, 2025. Here is what defenders need to know and how to take action to ensure systems are protected.
Summer Security for Your SAP Systems: Protecting Critical Applications During Holidays
Stay protected this summer with essential cybersecurity tips. Learn how to stay safe online during holidays and weekends.
SAP Security Notes & CVEs 2025: Analysis & Threats
Explore critical SAP Security Notes & CVEs from 2025. Get Onapsis’s analysis on deserialization vulnerabilities, zero-day exploits like CVE-2025-31324, and essential remediation steps.
July 2025 SAP Patch Day: Record Patches & Critical Deserialization Vulnerabilities
Security notes from this July Patch Tuesday that belong to a very dangerous class of vulnerability (CWE-502: Deserialization of Untrusted Data (4.17).
SAP NetWeaver Flaw Lets Threat Actors Take Full Control: CVE-2025-31324 and CVE-2025-42999 Explained
SAP warned organizations about the active exploitation of CVE-2025-31324 on April 24, 2025. Here is the information you need to know about protecting your SAP applications.
Top 5 SAP Security Risks & How to Mitigate Them
SAP systems are high-value targets—are yours secure? Discover the top 5 SAP security risks and practical steps to mitigate them before attackers strike.
Indicators of Compromise Scanner for SAP Zero-Day (CVE-2025-31324)
Onapsis, in collaboration with Mandiant, is releasing an open source tool to help organizations identify Indicators of Compromise (IoCs) associated with active in-the-wild exploitation of a recently patched vulnerability in SAP NetWeaver Application Server Java (CVE-2025-31324). CVE-2025-31324 is a critical unauthenticated remote code execution vulnerability in the Visual Composer component of SAP NetWeaver, allowing threat…
Utility Sector at Critical Mass to Build Resilience Against Cyber Risk
Learn how utilities can build resilience against cyberattacks with proactive vulnerability management to safeguard essential infrastructure and services.