Onapsis Resources
Access our in-depth hub of resources on ERP security reports, webinars, podcasts, and more.
Fireside Chat: Security and Compliance in the Shared Responsibility Model with OG&E and Onapsis
In partnership with Onapsis, this ASUG webcast will deliver insights designed to support your work with SAP technology. RISE with SAP delivers significant technological and procedural advancements to help organizations address evolving business needs. Central to the solution is the Shared Responsibility Model, which outlines the roles of customers, partners, and SAP in jointly delivering…
The Unprecedented Rise in SAP Attacks: Lessons from Mandiant & Onapsis
For years, the sheer complexity of SAP environments provided a form of security through obscurity. The newly released Mandiant 2026 M-Trends Report shatters this paradigm. According to the data, SAP NetWeaver has emerged as the most exploited enterprise vulnerability of the year. Threat actors are no longer stumbling into these environments; they are targeting them…
Episode III: Hacking & Defending SAP Live: How Mythos-like AI Models Can Hack SAP Applications
Historically, compromising SAP environments required years of specialized, niche knowledge of proprietary architecture. AI LLMs like Mythos, GPT-5.5-Cyber and even open source ones have obliterated that barrier to entry. Today, AI-powered offensive tools are democratizing cybercrime, translating complex SAP architectures for average attackers and enabling them to find, weaponize, and execute exploits against SAP applications…
Episode II:Hacking & Defending SAP Applications Live: Clean Core, Dark Shadows
As organizations adopt a Clean Core strategy, the attack surface of the SAP landscape has split into two distinct fronts: the rapid innovation of SAP BTP developments and the deep-rooted complexity of ABAP custom code. Security can no longer afford to treat these as blindspots. One missed vulnerability in a BTP app can leak your…
Episode I – Hacking & Defending SAP Applications Live: The SAP Zero-Day That Changed Everything
Episode I of Hacking & Defending SAP Applications Docuseries This webinar offers a comprehensive analysis of CVE-2025-31324, the first mass-exploited SAP zero day vulnerability. Onapsis Research Labs successfully intercepted and reverse-engineered the complete, multi-stage exploit chain used by sophisticated threat actors. The attack methodology will be detailed—from the initial vulnerability trigger to post-exploitation persistence. The…
From Discovery to Defense: SAP & Onapsis Joint Response to Zero-Day CVE-2025-31324
When zero-day CVE-2025-31324 surfaced, organizations had to react quickly. SAP and Onapsis worked closely to analyze the threat, validate exploitation activity, and deliver protections for customers worldwide. In this joint session, you’ll get a behind-the-scenes look at how security research and collaboration accelerate guidance, patching, and response to this zero-day. Hear from the experts about…
The State of SAP Security: 2025 Vulnerabilities, Exploits & Lessons Learned
n this webinar we recap 2025 and get practical guidance for SAP landscape in 2026.Your SAP applications aren’t just software—they’re the lifeblood of your business. In today’s threat landscape, relying on generic security isn’t enough. You need tailor-made, enterprise-grade protection. 2025 was a pivotal year for SAP security, marked by critical vulnerabilities, zero-day exploits, and…
The Hidden Risks of AI-Generated SAP Custom Code
In this exclusive webinar with Deloitte you will learn how organizations can safely harness AI innovation without compromising SAP security.
