Black Hat 2015: Onapsis CTO JP Perez demonstrates Oracle, SAP attack vectors
the SC Magazine take:
NEW: Attacks to Oracle EBusiness suite web applications
NEW: Abusing of Oracle JD Edwards protocols
The hacker's door into the USIS breach: SAP "Pivoting" Attack Vector
Onapsis CTO JP Perez demonstrates new business critical application attack vectors that impact big Oracle ERP systems. Attackers can trigger these vectors to access financial information, credit card numbers, customer and supplier data.