Security company Onapsis issued on Wednesday a key product that ensures intrusion detection systems to unveil attacks against SAP applications holding vital financial and business data.
The product known Onapsis IPS, is a collection of signatures or tell-tale signs that a hacker may be attempting to exploit an SAP system, told by the Mariano Nunez, CEO of Onapsis, headquartered in Boston. Onapsis acts insight testing and vulnerability assessment for SAP software.
The major enterprises use SAP’s ERP and CRM software to handle payroll, invoices and supply chains, forming a fundamental part of how a business is electronically controlled. The applications control very sensitive information.
SAP software has come under raising scrutiny from security researchers last few years and hackers, according to Nunez. SAP has been introducing around 60% a month for its systems and has launched more than 2,000 security patches since 2010.
The number of bandages poses a problem for system administrators, who often must close down the software and test it to make sure the patches work. It is complicated work that requires long time.
“Many businesses don’t use SAP security patches promptly,” Nunez said. “Some of them don’t even apply them at all.”
The time in between when an attack comes across to public and when the patch is applied is an open window in which hackers could be able access successfully. Although many organizations have intrusion protection or detection systems (IPS/IDS), those systems are not operated to detect SAP attacks.
To resolve that problem, Onapsis has created Snort signatures, which can be imported into most IPS/IDS appliances across the market. Nunez revealed Onapsis thought it was better to write signatures rather than to create a separate appliance, according to him.
Once the signatures are imported, managements can take decision then whether they want to cease an attack or be sent an alert when one is under way, Nunez told. SAP attacks are rarely advertized on large scale, which has led to a lower awareness for enterprises even though a breach could have a vital impact on their business if data was compromised.
“What we discovered is many companies told us they have never been hacked, but they do not have any security auditing feature enabled,” according to Nunez. He further added, “The only truth is they really do not aware. The fact they have never visualize any alerts really does not purport it is not happening.”
Onapsis IPS will be available purchase as an annual subscription, with new signatures sent monthly, Nunez revealed. The price is based on the number of IP addresses linked to the SAP software, he stated.
One of the company’s other products is X 1, a tool that will offer companies to test their ERP software for vulnerabilities and presents how those problems could describe important business information and how to fix them.