Get Ready for 2025: A Look Back and Ahead with Onapsis Research Labs


Register today to  look back on 2024 and get a sneak-peek into what’s on the horizon for 2025!

Join Onapsis Research Labs experts JP Perez-Etchegoyen and Paul Laudanski as they recap 2024’s key trends and share what to expect in 2025. This session will cover critical insights from ORL’s extensive research, highlight major patches and security events from the past year, and provide actionable steps to secure your business-critical SAP applications in the year ahead. Don’t miss this opportunity to prepare your team for the evolving threat landscape. Register today!

Expanded Code Security Capabilities


We recently announced the expansion of our Control product line to include a new bundle that enhances application security testing capabilities for SAP Business Technology Platform (BTP). This expanded offering supports both new and existing customers by enabling seamless, automated code scanning in SAP’s most commonly used integrated development environments (IDEs) and Git repositories.  This helps teams accelerate development, automate manual effort, enhance security and mitigate risks in their RISE with SAP and SAP BTP projects. Need we say more?

Need More Info on Securing BTP?


SAP Business Technology Platform (BTP) is transforming how organizations innovate and operate, but securing it comes with unique challenges. In this on-demand session, we explore the vulnerabilities of SAP BTP and provide an in-depth look at its authentication mechanisms, authorization controls, and encryption protocols. If you’re needing practical tips on proactive threat detection, incident response, and ensuring compliance, along with expert advice on optimizing security settings to fit your organization’s needs, this session’s for you!

Patch Tuesdays

December´s Patch Tuesday Updates


The December SAP Security Notes include 13 new and updated patches, featuring one HotNews Note and four High Priority Notes. Among the highlights, SAP addressed vulnerabilities such as ‘Server-Side Request Forgery’ and ‘Information Disclosure,’ with two of the High Priority Notes being re-releases from November. Notably, the Onapsis Research Labs contributed to this month’s updates, collaborating with SAP to patch four vulnerabilities, including the only HotNews Note of December. These updates underscore the continued importance of promptly addressing SAP security issues to protect critical systems.

Better Detect and Respond to Cybersecurity Incidents


We’re excited to announce a new strategic partnership with SAP to help customers detect and respond to cybersecurity incidents. Our  Incident Response offering is now available in the SAP store to facilitate the investigation and incident response assistance SAP customers require, when needed most. Click the link to learn more about this new partnership and offering.

Securing your Responsibilities within RISE with SAP


There are many benefits in transitioning to a cloud ERP with RISE with SAP. However, many SAP users don’t understand that there is a knowledge gap when it comes to what is secured by SAP and what falls on them to secure. Our recent webinar with SAP details the shared responsibility model, which outlines what responsibilities fall on the customer and how SAP users can work to fill these security gaps.

Code Security can now Extend to SAP BTP


We’ve expanded our Control product line with a new bundle tailored for SAP Business Technology Platform (BTP) development. This offering empowers development teams to seamlessly integrate advanced security testing into their workflows, including SAP-recommended IDEs and Git repositories. With real-time code scanning, inline security checks, and centralized Git repository management, you can now accelerate development, automate processes, and safeguard your SAP BTP and RISE with SAP projects from vulnerabilities.