What's new arround internet
| Src | Date (GMT) | Titre | Description | Tags | Stories | Notes |
 |
2018-11-26 18:53:01 | Sharing Best Practices at Cybersecurity for SAP Customers (lien direct) |  Join us at SAPInsider's Cybersecurity for SAP Customers event November 28 - 30 in Orlando, FL.
SAP, SAP Security, SAP cybersecurity, cybersecurity for sap customers, programs, eventsCorporateSelena Proctor11/26/2018 |
|||
|
2018-11-19 20:46:03 | Having a Grown-Up Conversation About the Results of Your Oracle EBS Assessment (lien direct) |  Are you worried about what will be found on your ERP system?
Oracle Security, Oracle, bri, assessment, business risk illustrationOracle SecurityChristian Simko11/19/2018 |
|||
|
2018-11-13 15:23:02 | SAP Security Notes November \'18: The Mobile Client Side Menace (lien direct) |  Today SAP released 12 security notes for November's SAP Security Patch Day as it is scheduled. This makes a total of 16 security notes after adding the four released since October's patch day. Among these SAP security notes there are three that fix a number of vulnerabilities reported by the Onapsis Research Labs. Two of them are critical.
SAP Security Notes, SAP, sap erp, information securitySAP Security NotesRaul Batista11/13/2018 |
|||
|
2018-11-05 21:09:01 | Restrict the File Types Uploaded to Your EBS Application (lien direct) |  When it comes to Oracle EBS security, there are many steps to take to proactively protect your organization. Restricting file type and size is one of them. Learn more about why and how to prevent unintended consequences.
Oracle, Oracle EBS, file type, modules, OSPResearchCristian Peque11/05/2018 |
|||
|
2018-10-30 19:02:02 | Observations from OpenWorld 2018 (lien direct) |  Hear from our newest member of the Onapsis Product Team, Christian Simko, as he gives us the run-down on last week's Oracle OpenWorld Conference.
oracle openworld, Oracle, events, researchCorporateChristian Simko10/30/2018 |
|||
|
2018-10-23 20:24:05 | Protecting Your ERP Applications (lien direct) |  Welcome Cindy Valladares, Director of Product Marketing for Onapsis, as she shares her first blog post. Don't miss our webcast with 451 Research, featuring Cindy, as she discusses best practices for protecting your ERP applications.
product, Webcast, erp securityProductCindy Valladares10/23/2018 |
|||
|
2018-10-19 17:20:00 | Catch Up on the Lastest ERP Cybersecurity Best Practices at Oracle OpenWorld (lien direct) |  Onapsis will be at Oracle OpenWorld in San Francisco October 22-25 - stop by booth #1928 to chat with our experts!
Oracle, oracle openworld, events, EBSCorporateSelena Proctor10/19/2018 |
|||
|
2018-10-17 18:14:00 | Oracle Patches 301 Vulnerabilities in October 2018 CPU (lien direct) | Our quarterly analysis of the Oracle CPU for October 2018. This time, half of the vulnerabilities this quarter have a direct impact on business-critical applications. Oracle CPU, Oracle, openworld, EBSResearchMatias Mevied10/17/2018 | |||
|
2018-10-12 15:41:03 | SAP as a Critical Part of a Holistic Cybersecurity Approach (lien direct) | ERP systems, of which SAP and Oracle are the most widely adopted, are the lifeblood of organizations, containing critical assets of a financial, operational and sensitive nature. They are natural targets for malicious attacks from both inside the organization and from unknown hacker groups. SAP, cybersecurity, strategy, erp securityCorporateSelena Proctor10/12/2018 | |||
|
2018-10-09 19:28:01 | (Déjà vu) SAP Security Notes October \'18: First Critical BusinessObjects Note in Five Years (lien direct) | Our monthly report on how to improve your SAP security and take care of your most critical information by exploring the latest SAP Security Notes for October 2018. SAP Security Notes, SAP, sap erp, information securitySAP Security NotesRaul Batista10/09/2018 | |||
|
2018-09-11 15:36:03 | (Déjà vu) SAP Security Notes September \'18: Critical Bug in SAP HANA XS (lien direct) | Our monthly report on how to improve your SAP security and take care of your most critical information by exploring the latest SAP Security Notes for September 2018. SAP Security Notes, SAP, sap erp, information securitySAP Security NotesRaul Batista09/11/2018 | |||
|
2018-08-14 21:04:05 | (Déjà vu) SAP Security Notes August \'18: SQL Injection in BusinessObjects and Several High Priority Notes to take care of. (lien direct) | Our monthly report on how to improve your SAP security and take care of your most critical information by exploring the latest SAP Security Notes for August 2018. SAP Security Notes, SAP, sap erp, information securitySAP Security NotesDaniel Antonelli, Raul Batista08/14/2018 | |||
|
2018-07-30 19:58:02 | How Do You Check Old Hashes in Your ABAP System? (lien direct) |  Learn how to further protect your SAP systems by checking if your ABAP systems contains stored insecure hashes.
SAP, hashes, hash type, password, researchResearchAlejandro Sanchez07/30/2018 |
|||
|
2018-07-27 16:33:05 | Meet us at Black Hat USA 2018! (lien direct) | Onapsis will be at Black Hat USA 2018 booth #1601 - schedule time to talk with us there. black hat, SAP, Oracle, hacker, research, report, erp securityCorporateSelena Proctor07/27/2018 | |||
|
2018-07-17 18:03:05 | New Record, Oracle Fixes 334 Vulnerabilities in July 2018 CPU (lien direct) | Includes a step-by-step CPU implementation guide for Oracle E-Business Suite. Oracle Critical Patch Update, Oracle, Oracle CPU, Oracle EBSResearchCristian Peque, Matias Mevied07/17/2018 | |||
|
2018-07-10 21:19:00 | (Déjà vu) SAP Security Notes July \'18: Re-released Hot News and the Rise of Security Notes (lien direct) | Our monthly report on how to improve your SAP security and take care of your most critical information by exploring the latest SAP Security Notes for July 2018. SAP Security Notes, SAP, sap erp, information securitySAP Security NotesDaniel Antonelli, Raul Batista07/10/2018 | |||
|
2018-06-12 16:11:03 | (Déjà vu) SAP Security Notes June \'18: What to Do with Critical Re-released Notes? (lien direct) | Our monthly report on how to improve your ERP security and take care of your most critical information housed in SAP by exploring the latest SAP Security Notes for June 2018. SAP Security Notes, SAP, sap erp, information securitySAP Security NotesSebastian Bortnik, Waldo Spek06/12/2018 | |||
|
2018-05-25 17:52:00 | GDPR is Not Just About Customers, But Employees Too (lien direct) | GDPR is finally here. You've thought of everything, except how to handle your employees' user information... SAP, compliance, GDPR, sap compliance, productProductAlex Horan05/25/2018 | |||
|
2018-05-21 21:11:02 | Protecting SAP Configurations (lien direct) | Your security teams spend hours configuring SAP to ensure its security, but how do you make sure the systems remain secure? configuration drift, SAP Security, sap configurations, SAP, SAP BASISProductSergio Abraham05/21/2018 | |||
|
2018-05-08 20:57:04 | (Déjà vu) SAP Security Notes May \'18: Hidden in Plain Sight (lien direct) | Our monthly report on how to improve your ERP security and take care of your most critical information housed in SAP by exploring the latest SAP Security Notes for May 2018. SAP Security Notes, SAP, sap erp, information securitySAP Security NotesWaldo Spek05/08/2018 | |||
|
2018-05-04 14:47:03 | Beware the Silent Threat of Insecure Configurations to Your SAP Systems (lien direct) | Our research team recently revealed a critical threat to SAP Netweaver - Join our upcoming webcast to learn more. message server, vulnerability, SAP, SAP Security, Webcast, configuration driftResearchSebastian Bortnik05/04/2018 | |||
|
2018-04-25 22:24:02 | RSA 2018 Round-up: A Busy Week of Sharing Security Best Practices (lien direct) | A summary of events and Onapsis's presence at RSA Conference 2018. RSA Conference, SAP cybersecurity, Oracle EBS cybersecurity, erp securityCorporateSelena Proctor04/25/2018 | |||
|
2018-04-17 20:59:04 | April 2018 Oracle Critical Patch Update: Oracle patches 254 vulnerabilities, 176 specific to Financials (lien direct) |  Onapsis helps secure 92% of E-Business Suite vulnerabilities
Oracle, Oracle CPU, Oracle EBSResearchMatias Mevied04/17/2018 |
|||
|
2018-04-11 21:17:00 | Hot Topics at RSA 2018: Digital Transformation Projects, GDPR and Protecting Your Business-Critical Applications (lien direct) | Onapsis will be at RSA 2018 - stop by booth #4227 if you are there! RSA Conference, SAP cybersecurity, Oracle EBS cybersecurityCorporateSelena Proctor04/11/2018 | |||
|
2018-04-10 18:33:04 | (Déjà vu) SAP Security Notes April \'18: Testing Assumptions (lien direct) | Our monthly report on how to improve your ERP security and take care of your most critical information housed in SAP by exploring the latest SAP Security Notes for April 2018. SAP Security Notes, SAP, sap erp, information securitySAP Security NotesWaldo Spek04/10/2018 | |||
|
2018-03-13 17:11:04 | SAP Security Notes Mar \'18: The Risks of Open Source (lien direct) | Our monthly report on how to improve your ERP security and take care of your most critical information housed in SAP by exploring the latest SAP Security Notes. SAP Security Notes, SAP, High Priority, open sourceSAP Security NotesWaldo Spek03/13/2018 | |||
|
2018-02-22 17:59:01 | Table Change Logging and Security Considerations (lien direct) | The goal of this blog post is to help you understand the importance of enabling the Table Change Logging in your SAP system and the risks that exist if you choose not to enable it. table change logging, configurations, SAP SecurityResearchDaniel Antonelli02/22/2018 | |||
|
2018-02-13 22:25:03 | SAP Security Notes Feb \'18: Onapsis Helps SAP Patch Several Vulnerabilities in HANA XS Advanced (lien direct) | Our monthly report on how to improve your ERP security and take care of your most critical information housed in SAP by exploring the latest SAP Security Notes. SAP Security Notes, SAP, Patches, High PrioritySAP Security NotesDaniel Antonelli02/13/2018 | |||
|
2018-01-17 18:47:31 | Oracle January CPU Analysis: 64% of Patches Affect Business-Critical Applications (lien direct) | Onapsis confirms public exploit attacking Oracle applications can affect Oracle E-Business Suite Oracle, Oracle CPU, Oracle EBS, crypto miningResearchMatias Mevied, Sebastian Bortnik01/17/2018 | |||
|
2018-01-09 17:13:53 | SAP Security Notes Jan \'18: a Code Injection Correction and What Steps to Take (lien direct) | A look at the SAP Security Notes released for January 2018 SAP Security Notes, SAP, SAP Security Notes January 2018SAP Security NotesSebastian Bortnik, Waldo Spek01/09/2018 | |||
|
2018-01-08 20:12:50 | (Déjà vu) SAP Security Notes 2017: Trends Towards Stability, What it Means For Your Security Strategy (lien direct) | An overview of SAP's 2017 Security Notes and how it may affect your security strategy for 2018. SAP Security Notes, 2017 SAP Security Notes, SAPSAP Security NotesDaniel Antonieli, Sebastian Bortnik, Waldo Spek01/05/2018 | |||
|
2018-01-06 00:03:12 | SAP Security Notes 2017: Trends Towards Stability and What it Means for Your Security Strategy (lien direct) | A overview of SAP's 2017 Security Notes and how it affects your security strategy SAP, SAP Security Notes, 2017 SAP Security NotesResearchDaniel Antonieli, Sebastian Bortnik, Waldo Spek01/05/2018 | |||
|
2017-12-21 17:13:15 | How The Newly Released OWASP Top 10 Affects Your SAP Systems (lien direct) | A look at the OWASP Top 10 most critical web application security risks SAP Security, OWASP, OWASP top 10, OSPProductAlex Horan12/21/2017 | |||
|
2017-12-13 16:35:40 | (Déjà vu) SAP Security Notes December 2017: What to Know About Re-released \'Hot News\' Note (lien direct) |  To wrap up 2017, the last SAP Note Tuesday of the year, SAP has released a total of 19 notes this month. Six of these notes have already been released throughout the course of the month with the remaining 13 released today.SAP, SAP Security Notes, SAP vulnerabilities, SAP Hot NewsSAP Security NotesSebastian Bortnik, Waldo Spek12/12/2017 |
|||
|
2017-12-12 17:32:53 | SAP Security Notes December 2017: What to know about re-released \'Hot News\' note (lien direct) |  To wrap up 2017, the last SAP Note Tuesday of the year, SAP has released a total of nineteen notes this month. Six of these notes have already been released throughout the course of the month with the remaining thirteen released today.
SAP, SAP Security Notes, SAP vulnerabilities, SAP Hot NewsSAP Security NotesSebastian Bortnik, Waldo Spek12/12/2017 |
|||
|
2017-12-07 21:17:58 | OSP How-To: GDPR and Your SAP Systems (lien direct) | OSP How-To: GDPR and Your SAP SystemsGDPR, SAP, compliance, OSP, productProductAlex Horan12/07/2017 | |||
|
2017-11-14 15:52:04 | SAP Security Notes November 2017: Don\'t Get Too Comfortable, Hot News is Back (lien direct) | Today SAP has released another batch of its security notes, a regular event which happens every second Tuesday of the month. The total number of notes this month is 32, of which 18 have been released today. The other 14 notes have been released in the course of the past month. Those notes generally concerned re-releases. SAP, SAP Security Notes, SAP vulnerabilities, SAP Hot NewsSAP Security NotesWaldo Spek11/14/2017 | |||
|
2017-10-17 20:47:23 | Oracle October CPU: Onapsis Contributes to EBS Security by Reporting Almost 60% of the Vulnerabilities, Including Those Most Critical (lien direct) |  One of the most important components of securing business-critical applications is to ensure the systems are always up to date with the latest security patches to reduce the risk level. Today Oracle released the last Critical Patch Update (CPU) of the year. In this CPU, Oracle stopped an increasing trend seen in the last three CPUs, where Oracle continually fixed more vulnerabilities during each new CPU. In the latest CPU, Oracle fixed 252 security vulnerabilities.Oracle, Oracle CPU, EBS, Oracle EBS SecurityResearchMatias Mevied10/17/2017 |
|||
|
2017-10-10 15:12:05 | SAP Security Notes October 2017: Sensitive Data Exposed (lien direct) | Since it is the second tuesday of the month, SAP has again published a new set of notes to patch vulnerabilities found in its software. Over the course of the month, counting from the last patch tuesday, a total of 30 new notes were published. Today, half of those notes were posted. SAP, SAP Security Notes, SAP vulnerabilities, SAP Hot NewsSAP Security NotesWaldo Spek10/10/2017 | |||
|
2017-09-28 13:11:02 | New Onapsis product helps Oracle E-Business Suite customers secure their business-critical information and processes (lien direct) |  At Onapsis, our vision since inception has always been to protect the business-critical applications that organizations rely on to run their businesses.CorporateMariano Nunez09/28/2017 |
|||
|
2017-09-21 20:27:13 | GDPR and SAP: Will it Affect You and What Steps You Can Take Now (lien direct) | At Onapsis we recognize that information security means more than just protecting your business-critical applications from possible invaders. Worldwide, we see cybersecurity regulations maturing, leading to added pressure for companies to stay compliant. It is clear that, apart from the obvious technical component, the legal aspects of the information security domain demand a growing slice of attention to maintain business prosperity.GDPR, compliance, SAP, SAP cybersecurityResearchWaldo Spek09/21/2017 | Guideline | ||
|
2017-09-14 18:21:58 | Onapsis Research Labs Releases First Oracle Security In-Depth Publication (lien direct) | At Onapsis we are dedicated to continuously improving security in business-critical applications. Today Onapsis Research Labs released the first Oracle Security In-Depth (OSID) paper. After several years (and 13 different documents) of publishing SAP Security In-Depth (SSID), we are increasing our library to now include Oracle applications.Oracle Security, EBS, OracleResearchMatias Mevied09/14/2017 | |||
|
2017-09-12 16:59:01 | (Déjà vu) SAP Security Notes September 2017: No Hot News updates does not mean you can become complacent (lien direct) |  It's the second Tuesday of the month and another set of SAP Security Notes has been released. Since the previous Patch Day in August, SAP has released 32 notes, including 16 out-of-date and another 16 released this morning. One striking observation is that this is the fifth month in a row without a Hot News note; the highest category for notes based on risk. In addition to that, for the three high-priority notes, two of them are updates for a July note and the other one only affects a single country making the risk much smaller.SAP, SAP Security Notes, SAP vulnerabilities, SAP Hot NewsSAP Security NotesSebastian Bortnik09/12/2017 |
|||
|
2017-09-12 16:59:01 | (Déjà vu) SAP Security Notes September 2017: Another week without Hot News? (lien direct) | It's the second Tuesday of the month and another set of SAP Security Notes has been released. Since the previous Patch Day in August, SAP has released 32 notes, including 16 out-of-date and another 16 released this morning. One striking observation is that this is the fifth month in a row without a Hot News note; the highest category for notes based on risk. In addition to that, for the three high-priority notes, two of them are updates for a July note and the other one only affects a single country making the risk much smaller.SAP, SAP Security Notes, SAP vulnerabilities, SAP Hot NewsSAP Security NotesSebastian Bortnik09/12/2017 |
|||
|
2017-09-06 14:17:35 | Analysis of the SAP HANA Internal Communication Interface (lien direct) | SAP HANA is a very fast growing product in many SAP environments, that has moved away from just an in-memory database to a complete application plus database system. In today's blogpost we'll talk about the SAP HANA internal communication interface, discuss its use in different scenarios, the configuration parameters involved and the different options that SAP HANA administrators should consider to secure their systems. We'll also perform an analysis of the default configuration introduced in SPS 12 reviewing different parameters and how they impact overall security.ResearchNahuel D. Sanchez09/06/2017 | |||
|
2017-08-24 13:58:02 | Protecting Oracle E-Business Suite: Encrypt web interface (HTTPS) (lien direct) |  After the release of our threat report about a critical vulnerability on “Unauthorized Business Data Exfiltration Vulnerabilityâ€, we are continuing our series of blogpost about Oracle E-Business Suite security. To keep our readers informed about security risks and mitigation techniques to Oracle's biggest ERP, E-Business Suite (EBS), we will continue to publish blogs on a monthly basis.ResearchCristian Peque08/24/2017 |
|||
|
2017-08-18 16:11:29 | TMSADM user with Default Password: another risk in your SAP system (lien direct) |  As our readers know, we continuously share details to raise awareness and enable organizations to further secure their SAP infrastructure. In this specific blog, we will focus on one of the well-known SAP default users: TMSADM. What the security implications are of having it enabled with default passwords, and how to properly protect it? As you can imagine, it is not as simple as it sounds, so that's why we created this blogpost for you.SAP Security, SAP TMSADMResearchDaniel Antonieli08/18/2017 |
|||
|
2017-08-08 15:03:46 | SAP Security Notes August 2017: Remote Code Injection Vulnerability in JAVA Component (lien direct) |  It's the second Tuesday of the month, meaning another round of monthly SAP notes have been released. Below is our monthly analysis regarding the SAP vulnerabilities fixed, to help you keep your ERP environment safe and protected. For another month, there are no new notes tagged as Hot News, now making a four month streak in which notes of this severity are absent. There is still a need for action however, since three notes were reported as having High priority.SAP Security NotesSebastian Bortnik08/08/2017 |
|||
|
2017-07-31 19:13:37 | From 2007 to Now: Onapsis\' CEO\'s Thoughts on Business-Critical Application Security recognized by Gartner in the Hype Cycle for Application Security (lien direct) |  Today Gartner recognized Business-Critical Application Security as an emerging market trend, in the 2017 Hype Cycle for Application Security that has just been released.Gartner, hype cycle, business-critical applications, OnapsisCorporateMariano Nunez07/31/2017 |
|||
|
2017-07-18 23:27:36 | Oracle July CPU Analysis: Onapsis helps patch critical vulnerability in E-business Suite (lien direct) |  As a security vendor and Research Labs with the goal of protecting our customer's business-critical applications we also have the continuous balance of proactively informing the community about emerging threats affecting their critical applications. A big part of this is our continuous work with vendors to help them secure vulnerabilities in their software. Today, for the third time, the July 2017 Oracle Critical Patch Update breaks a record on number of patched bugs with 308 vulnerabilities solved.ResearchMatias Mevied07/18/2017 |
To see everything:
Our RSS (filtrered)
