
Onapsis Research Labs, the only security team dedicated to finding and helping mitigate critical vulnerabilities within business applications, reaches material threat intelligence milestone
Onapsis today announced it has discovered over 1,000 critical vulnerabilities within SAP and Oracle applications. The team responsible for finding, disclosing, and helping mitigate these vulnerabilities is Onapsis Research Labs. This group of offensive security professionals is the only team dedicated to hunting down vulnerabilities and monitoring how threat actors attack within enterprise resource planning (ERP), supply chain management, customer relationship management, and other business applications. Onapsis Threat Intelligence Cloud combined with this team’s unique expertise allows Onapsis Research Labs to determine tactics, techniques, and procedures used by threat actor groups and ultimately arm customers with this information in the Onapsis Platform.
With the increase in cyberattacks directly on ERP and other business applications, global enterprises continue to turn to Onapsis for their vulnerability management, threat detection, and response, change assurance, and continuous compliance needs. Onapsis Research Labs is a core reason close to 30% of the Forbes Global 100 rely on Onapsis’ market-leading security solutions to protect their business-critical applications.
“This milestone cannot be overstated for both Onapsis and the ERP security market as a whole,” says Mariano Nunez, Co-founder and CEO of Onapsis. “For the last thirteen years, Onapsis Research Labs has contributed so much to the security community, our partners, and our customers. Discovering and helping mitigate 1,000 vulnerabilities quantifiably underscores the team’s dedication to keeping ERP applications secure, something that wouldn’t be possible without our strategic partnerships with SAP and Oracle.”
This announcement is on the heels of Onapsis’ launch of its Threat Intel Center and its Network Detection Rule Pack. The Threat Intel Center alleviates the burden placed on already-strained security teams by delivering a comprehensive transfer of knowledge, enabling them to efficiently protect their organization while building their expertise in SAP and Oracle security. The Network Detection Rule Pack extends Onapsis Research Lab-powered threat monitoring to the network layer, giving organizations pre-patch protection for the most critical and network-detectable vulnerabilities in business applications. These innovations are examples of Onapsis Research Labs’ threat intelligence providing tangible impact within the Onapsis Platform.
“Our work generates actionable threat intelligence, fueling our technology but also helping us educate the broader communities on how to protect their applications and organizations from growing threats,” says Juan Pablo Perez-Etchegoyen, Co-founder and Chief Technical Officer of Onapsis. “Discovering over 1,000 vulnerabilities is monumental, and when we also consider the criticality of some of these vulnerabilities, the positive impact is even more vast. I am proud to be a part of this achievement and look forward to our continued work with the SAP Product Security Response Team PSRT and Oracle Product Security team to have a material impact on securing business applications.”
“Onapsis is paving the way for the business-critical application security market,” said Dave DeWalt, Founder & Managing Director of NightDragon and Onapsis board member. “This news signifies the company’s impact on the cybersecurity community and ongoing commitment to protecting the assets that matter most. I look forward to seeing what else the team will accomplish in the months ahead.”
To learn more about Onapsis Research Labs, their research, and findings, visit the Onapsis website or engage with us at one of the following industry conferences. Perez-Etchegoyen will be presenting at API Cybersecurity Conference, one of the largest oil and gas conferences in North America, while members of the Onapsis Research Labs will be presenting and instructing at Black Hat Europe in December.
Fachartikel

CVE-2023-23397: Der Benachrichtigungston, den Sie nicht hören wollen

Wie sich kleine und mittlere Unternehmen proaktiv gegen Ransomware-Angriffe wappnen

Attraktivität von MSP-Geschäftsmodellen gegenüber Investoren gezielt steigern

Schlüsselfaktoren für das Engagement im Bereich Managed Detection and Response (MDR)

Setzen Sie die Datensicherheit Ihres Unternehmens nicht aufs Spiel
Studien

Studie zeigt 193 Millionen Malware-Angriffe auf Mobilgeräte von Verbrauchern im EMEA-Raum

2023 State of the Cloud Report

Trotz angespannter Wirtschaftslage: die Security-Budgets steigen, doch der IT-Fachkräftemangel bleibt größte Hürde bei Erreichung von Security-Zielen

BSI-Studie: Viele Software-Produkte für Onlineshops sind unsicher

Wie Cloud-Technologie die Versicherungsbranche revolutioniert
Whitepaper

Aktueller Datenschutzbericht: Risiko XXL am Horizont

Vertrauen in die Lieferkette durch Cyber-Resilienz aufbauen

TXOne Networks und Frost & Sullivan veröffentlichen Jahresbericht 2022 über aktuelle Cyberbedrohungen im OT-Bereich

Fast die Hälfte aller Organisationen im Gesundheitswesen von Datensicherheitsverletzungen betroffen

Ransomware-Gruppe LockBit steckt am häufigsten hinter der illegalen Veröffentlichung gestohlener Daten
Unter4Ohren

DDoS – der stille Killer

Continuous Adaptive Trust – mehr Sicherheit und gleichzeitig weniger mühsame Interaktionen

Datenschutz und -kontrolle in jeder beliebigen Cloud bei gleichzeitiger Kostensenkung, Reduzierung der Komplexität, Verbesserung der Datenverfügbarkeit und Ausfallsicherheit

PwC Deutschland – Corporate Security Benchmarking Survey
