News

Espionage, sabotage and fraudful actions: about attacks on ERP-systems on the BlackHat DC conference

During the BlackHat DC conference ERPScan experts told about attacks on corporate business-applications which can be used by cybercriminals for espionage, sabotage and fraudful actions concerning competitors. At the conference unknown earlier methods of attacks were presented on popular ERP-systems, such as SAP, JD Edwards, and also on RDBMS Open Edge, which is a universal platform for development custom business-applications.

Read more

ERPScan Performance in 2010

2010 — the third year of ERPScan public work has come to an end. This year was quite complicated, but very productive. In 2010 multiple vulnerabilities were found, though the amount of vulnerabilities published is less than previously as the vendors have not yet introduced updates allowing their disclosure. Moreover, vulnerabilities have become more critical and diversified, while the scope of applications under research was broadened with banking software and new ERP systems.

Read more

ERP systems expose firms to industrial espionage

IT chiefs have been warned that it is their mission-critical systems that pose one of the greatest security risks to the enterprise, with the complexity of patching enterprise resource planning (ERP) applications presenting an opening to cyber thieves.

Read more

Hacking Lotus Domino

Published a simple guide about Lotus Domino hacking, that can be used for penetration testion and application security assesment.

Read more