Depth and breadth of threat intelligence coverage
Posted: Sat Feb 08, 2025 10:02 am
Until now, the study argues, ERP cybersecurity issues have been largely ignored due to a lack of published reports of breaches and information about those posing a threat in what many security experts consider a complex and little-known segment.
Criminals are constantly evolving their tactics to prey on organizations, said Rick Holland, chief information security officer (CISO) and vice president of strategy at Digital Shadows: “On one level, this isn’t surprising given the amount of data that ERP platforms store. However, we were surprised to discover how real and serious this problem is.”
Onapsis Chief Technology Officer Juan Pablo Perez said the iceland mobile database offers unprecedented depth and breadth of threat intelligence. “By showing how these applications are being actively targeted by a variety of threat actors across geographies and industries, we hope to break down industry misconceptions and help CIOs, CISOs, and their organizations take action and manage the risk of large-scale attacks on ERP applications that can have devastating impacts and macroeconomic consequences.”
Traditional security measures such as identity management and separation of duties are unable to effectively detect and prevent attacks on ERP applications. “While some executives still believe that ERP applications behind the firewall are protected, we have seen clear signs that malicious activity is targeting these environments without direct internet connectivity,” the study says. “Furthermore, a surprising number of unprotected ERP applications are directly accessible from the internet, both on-premises and in public clouds, increasing their attack surface and exposure.”
Criminals are constantly evolving their tactics to prey on organizations, said Rick Holland, chief information security officer (CISO) and vice president of strategy at Digital Shadows: “On one level, this isn’t surprising given the amount of data that ERP platforms store. However, we were surprised to discover how real and serious this problem is.”
Onapsis Chief Technology Officer Juan Pablo Perez said the iceland mobile database offers unprecedented depth and breadth of threat intelligence. “By showing how these applications are being actively targeted by a variety of threat actors across geographies and industries, we hope to break down industry misconceptions and help CIOs, CISOs, and their organizations take action and manage the risk of large-scale attacks on ERP applications that can have devastating impacts and macroeconomic consequences.”
Traditional security measures such as identity management and separation of duties are unable to effectively detect and prevent attacks on ERP applications. “While some executives still believe that ERP applications behind the firewall are protected, we have seen clear signs that malicious activity is targeting these environments without direct internet connectivity,” the study says. “Furthermore, a surprising number of unprotected ERP applications are directly accessible from the internet, both on-premises and in public clouds, increasing their attack surface and exposure.”