The Salesforce Winter ‘21 patch for Aura should remediate the security risk that allowed any authenticated user the ability to use web services exposed with the @auraenabled decorator. However, Onapsis Research Labs has some security concerns that we found within Aura that we’ll be covering in this blog post.

The SAP Management Console (SAP MC) provides a common framework for centralized system management. It allows you to monitor and perform basic administration tasks on the SAP system centrally, which simplifies system administration.

Secure Sockets Layer (SSL)/Transport Layer Security (TLS) is a protocol used to encrypt communications between two entities by exchanging public and private keys to create secure sessions between them. In this blog, I will explain how you can enable SSL (Secure Socket Layer) in your SAP Java system and how you can redirect the HTTP requests to HTTPS protocol.

There is no doubt that ERP systems will increasingly become a preferred target of cyberattacks. SAP and Onapsis have taken multiple measures so that customers are best prepared for the challenges of 2020. Here is some of what we learned in 2019 and what we can expect in 2020.

A recent IDC survey reports that 64% of organizations have suffered an ERP system breach in the past 24 months. To ensure that your organization has the proper processes and controls in place to keep SAP and Oracle E-Business Suite business-critical applications secure and in compliance, we are providing guidance and questions to ask.

With ERP systems, such as SAP and the Oracle E-Business Suite (EBS) at the core of your business, these systems also must be a focus of your SOX audit. Business-critical applications including your financials are supported by your ERP systems and issues can easily become material weakness. As a result, it is necessary to stay up-to-date regarding what different industries are doing to protect the integrity of financial statements while reducing the costs of implementing and testing the internal controls.

Starting in Q1 2019, unsigned SAP Notes will be discontinued. This means that now every SAP system should be able to load digitally signed notes. Before Q1 2019, it would have still been possible to download unsigned SAP notes. Learn how make sure your SAP systems are enabled to implement digitally signed notes.

In this blog post, we will discuss how you can make security and compliance an enabler rather than see it as a roadblock for your move to S/4HANA. Without a strong cybersecurity strategy, organizations are at risk of compliance failures, data breaches, financial fraud and system downtime.

The Onapsis Research Labs were in attendance for the 2019 edition of Troopers Conference - hear from our Head of Research as he shares his views on the experience.