Onapsis to Demonstrate Importance of SAP Security During Black Hat USA 2020

BOSTON – 31. Juli 2020 - Onapsis, the leader in mission-critical application cybersecurity and compliance, today announced members of the Onapsis Research Labs are presenting significant SAP cybersecurity research at Schwarzer Hut USA 2020. In its 23rd year, Black Hat USA is the world’s leading information security event which brings together the best minds in the industry. This year’s virtual format will provide remote attendees with the latest security research, developments, and trends.

During the event, Onapsis will showcase its latest threat research for SAP Solution Manager (SolMan). Onapsis researchers will take attendees through a security assessment of SAP SolMan, critical vulnerabilities found by Onapsis and reported to SAP, exploitation examples, how SAP has fixed these issues, and what organizations can do to detect and protect these threats moving forward.

“SAP SolMan is the technical heart of an SAP landscape. It is highly connected and can perform various administration activities remotely on all connected SAP systems,” said Juan Pablo Perez-Etchegoyen, CTO at Onapsis. “However, when speaking about protecting SAP systems, landscapes tend to be large and complex, so SAP SolMan can often go overlooked. Our research highlights critical vulnerabilities and dangerous threats connected to SAP SolMan and why it’s crucial to keeping the rest of your SAP system secure.”

More nformation on the session can be found hier, und darunter:

  • Titel: An Unauthenticated Journey To Root: Pwning Your Company’s Enterprise Software Servers
  • Moderatoren: Pablo Artuso, Security Researcher, Onapsis; Yvan Genuer, Senior Security Researcher, Onapsis
  • Wann: Wednesday, August 5, 2020 from 11:00 am – 11:40 am PT

Abstract: SAP’s software relationship with the enterprise is well established, often responsible for processing billions of dollars, but with such a vital role in business, what would the impact be if serious flaws were exploited? At the heart of every SAP deployment there is always one core mandatory product that’s connected to many other systems: The SAP SolMan. Given the criticality of this component, the Onapsis Research Labs conducted a thorough security assessment of SAP SolMan to understand the threat model, how attackers could compromise it and how customers should protect themselves.

Über Black Hat

For more than 20 years, Black Hat has provided attendees with the very latest in information security research, development, and trends. These high-profile global events and trainings are driven by the needs of the security community, striving to bring together the best minds in the industry. Black Hat inspires professionals at all career levels, encouraging growth and collaboration among academia, world-class researchers, and leaders in the public and private sectors. Black Hat Briefings and Trainings are held annually in the United States, Europe and Asia. More information is available at: Black Hat is organized by UBM, which in June 2018 combined with Informa PLC to become a leading B2B information services group and the largest B2B Events organizer in the world. To learn more and for the latest news and information, visit

Über Onapsis

Onapsis schützt die geschäftskritischen Anwendungen, die die Weltwirtschaft steuern. Die Onapsis-Plattform bietet auf einzigartige Weise umsetzbare Erkenntnisse, sichere Änderungen, automatisierte Governance und kontinuierliche Überwachung für kritische Systeme – ERP-, CRM-, PLM-, HCM-, SCM- und BI-Anwendungen – von bekannten Anbietern wie SAP, Oracle und führenden Cloud-Anwendungen.

Onapsis hat seinen Hauptsitz in Boston, MA, mit Niederlassungen in Heidelberg, Deutschland und Buenos Aires, Argentinien. Wir sind stolz darauf, mehr als 300 der weltweit führenden Marken zu bedienen, darunter 20 % der Fortune 100, 6 der Top 10 Automobilunternehmen, 5 der Top 10 Chemieunternehmen, 4 der Top 10 Technologieunternehmen und 3 der Top 10 Ölunternehmen und Gasunternehmen.

Die Onapsis-Plattform wird von den Onapsis Research Labs betrieben, dem Team, das für die Entdeckung und Behebung von mehr als 800 Zero-Day-Schwachstellen in geschäftskritischen Anwendungen verantwortlich ist. Die Reichweite unserer Bedrohungsforschung und Plattform wird durch führende Beratungs- und Prüfungsunternehmen wie Accenture, Deloitte, IBM, PwC und Verizon erweitert. Damit werden Onapsis-Lösungen zum De-facto-Standard, wenn es darum geht, Unternehmen beim Schutz ihrer Cloud-, Hybrid- und On-Premise-Missionen zu unterstützen. kritische Informationen und Prozesse.

Für weitere Informationen kontaktieren Sie uns auf Twitter oder LinkedIn oder besuchen Sie uns unter

Onapsis und Onapsis Research Labs sind eingetragene Marken von Onapsis Inc. Alle anderen Firmen- oder Produktnamen können eingetragene Marken ihrer jeweiligen Eigentümer sein.