What is SAP security? A funny thing, we have been dealing with it last 10 years but have never tried to answer this question in a distinct article before.
Read more »
What is SAP security? A funny thing, we have been dealing with it last 10 years but have never tried to answer this question in a distinct article before.Posted on March 2, 2016 | Filed under Blog
SAP has released the monthly critical patch update for September 2015. This patch update closes 20 vulnerabilities and 5 updates in SAP products, 16 of which are high priority, some of them belong to the SAP HANA security area. The most common vulnerability is Missing Authorization Check. This month, two critical vulnerabilities found by ERPScan researchers Vahagn Vardanyan and Roman Bezhan were closed.
Read more »Posted on September 8, 2015 | Filed under Blog
Now that we have covered PeopleSoft Architecture, it is time to continue with PeopleSoft security and describe some attack vectors against PeopleSoft system discovered by ERPScan researchers. The first one is an attack on back-end systems.
Read more »Posted on August 26, 2015 | Filed under Blog
Oracle PeopleSoft applications are quite complex and consist of many components, so their security is not a simple thing. While there is almost no research on PS security, successful attacks against such systems happen from time to time. That’s why we decided to start series of articles about some aspects of PS security.
Read more »Posted on August 20, 2015 | Filed under Blog