The Onapsis Blog

The world of business-critical application security and compliance is dynamic, with new developments happening on a continuous basis. Read our blog posts for recommendations, insights and observations on the latest news for safeguarding your SAP® and Oracle® applications.

Thumbnail

SAP Security Patch Day March 2021: Critical Patch Released for SAP MII and SAP NetWeaver AS Java

SAP has released 18 new and updated SAP Security Notes in its March 2021 patch release, including the notes that were released since last patch day. As part of this month’s patch release, there are four HotNews notes and one High Priority note.
Thumbnail

Transaction Types and How to Automate SAP User Information System (SUIM) Queries with The Onapsis Platform

The SAP Security Admin utilizes SUIM in SAP systems manually, one SAP system/client at a time to gather this data for operational use and to report findings internally/externally to Compliance or Audit teams. This can be a time-consuming process.
Thumbnail

Why the RECON Vulnerability Is a Before and After for SAP Cybersecurity Introduction

Anywhere from 2,500 up to potentially 10,000 internet-facing systems were exposed to RECON at the date of the release of the patch. Considering those numbers and that approximately 30% to 40% of the systems could still be vulnerable (based on estimations of diverse samples), that provides an enormous attack surface and risk. Learn more in our blog post here.
Thumbnail

Why Our New Partnership With SAP Establishes Onapsis as the Standard for Mission-Critical Application Cybersecurity and Compliance

I am very excited to announce a new partnership with SAP that helps all SAP customers protect their business-critical information and processes, and enables them to securely accelerate their journeys to become intelligent enterprises at a much needed time.
Thumbnail

Onapsis Provides All SAP Customers with Free RECON Vulnerability Scanning Tool

To help businesses identify if their systems are vulnerable, Onapsis has released Instant RECON, an online service and downloadable free and open source tool to scan your internal and external SAP instances to identify if it is patched against the RECON vulnerability, and to look for likely indicators of compromise (IoC) from a successful exploit of RECON.

Request a
Business Risk Illustration

OPERATIONAL RESILIENCY ASSESSMENT

Prevent application downtime and costly business disruption

Request an Assessment
AUDIT EFFICIENCY ASSESSMENT

Eliminate resource consuming manual audit processes

Request an Assessment
CYBER RISK 
ASSESSMENT

Reduce vulnerabilities and misconfiguration to protect the business

Request an Assessment