Oracle Security

The Onapsis Blog

The world of business-critical application security is dynamic, with new developments happening on a continuous basis. Check out our blog for recommendations, insights and observations on the latest news for securing your SAP®, Oracle® and Salesforce applications.

BigDebIT Vulnerabilities Put Thousands of Oracle E-Business Suite Customers’ Financials at Risk

06/15/2020 | By

Onapsis

|

Oracle Security

BigDebIT Vulnerabilities Put Thousands of Oracle E-Business Suite Customers’ Financials at Risk

Today, Onapsis is releasing a Threat Research Report about critical vulnerabilities that the Onapsis Research Labs found in the Oracle E-Business Suite and worked with the Oracle Security Response Team to fix in Oracle’s January 2020 Critical Patch Update.

Read more about BigDebIT Vulnerabilities Put Thousands of Oracle E-Business Suite Customers’ Financials at Risk

Oracle On Oracle: Business Application Security

12/23/2019 | By

JP Perez-Etchegoyen

|

Oracle Security

Oracle On Oracle: Business Application Security

The Onapsis Research Labs works very closely with Oracle to report potential security vulnerabilities for Oracle to fix and for Oracle customers to patch. We love to talk about not only the work we do but also the benefits of keeping up with patches and maturing the security posture of your ERP Applications.

Read more about Oracle On Oracle: Business Application Security

11/22/2019 | By

Onapsis

|

Oracle Security

Video: Oracle PAYDAY Vulnerabilities

Oracle E-Business Suite (EBS) vulnerabilities from earlier this year are presenting new risk, despite fixes from Oracle. Thousands of organizations that have not applied the patches remain at risk for these PAYDAY vulnerabilities.

Read more about Video: Oracle PAYDAY Vulnerabilities

Oracle PAYDAY Attacks Put Thousands of Global Organizations at Risk of Financial Fraud and Theft

11/19/2019 | By |

Oracle Security

Oracle PAYDAY Attacks Put Thousands of Global Organizations at Risk of Financial Fraud and Theft

The Onapsis Research Labs has been working closely with Oracle Corporation's Security Response Team to fix several critical vulnerabilities in the Oracle E-Business Suite (EBS). The vulnerabilities, named PAYDAY, were initially patched in Oracle’s April 2018 Critical Patch Update (CPU) and subsequent vulnerabilities have been patched as late as the April 2019 CPU.

Read more about Oracle PAYDAY Attacks Put Thousands of Global Organizations at Risk of Financial Fraud and Theft

ERP Systems Vulnerable to the Same Issue that Caused the Capital One Breach

08/06/2019 | By |

Oracle Security

ERP Systems Vulnerable to the Same Issue that Caused the Capital One Breach

By now, just about everybody knows about the Capital One breach. But what InfoSec and ERP admin teams may not know is just how vulnerable their most critical business applications might be to the same attack.

Read more about ERP Systems Vulnerable to the Same Issue that Caused the Capital One Breach

07/16/2019 | By

Martin Doyhenard

|

Oracle Security

Oracle’s July 2019 CPU Patches Three Critical Vulnerabilities in E-Business Suite Reported by Onapsis

Our quarterly analysis on how to improve your Oracle EBS security and take care of your most critical information by exploring the latest Oracle Critical Patch Updates for July 2019. This month, six of 13 total EBS vulnerabilities were reported by Onapsis, four in Oracle Payments.

Read more about Oracle’s July 2019 CPU Patches Three Critical Vulnerabilities in E-Business Suite Reported by Onapsis

04/19/2019 | By |

Oracle Security

A Battle-Cry for Oracle EBS Security

Thanks to everyone who visited us at OATUG Collaborate this year - Read on for the trends we saw around securing Oracle EBS.

Read more about A Battle-Cry for Oracle EBS Security

04/18/2019 | By

Martin Doyhenard

|

Oracle Security

April's Oracle CPU Fixes Critical Bugs Reported by Onapsis

Our quarterly analysis on how to improve your Oracle EBS security and take care of your most critical information by exploring the latest Oracle Critical Patch Updates for April 2019.