Protecting Yourself Against App-Based Malware AttacksOnapsis' Mariano Nunez on How to Secure Against Application-Based Malware Attacks
The fundamentals of protecting against application-based malware attacks are no different from infrastructure-based attacks, and it is all about having threat intelligence, context and the capability to really understand these applications, said Mariano Nunez, co-founder and CEO at Onapsis.
"In essence, it is like OT security. You have very specific protocols, very specific components and proprietary technology that is really hard to understand and make sure that you can trust but verify," Nunez said.
"If you're doing data management today, you need to extend the program to cover business-critical apps. If you're doing DevSecOps, you can extend your program. Make sure you're protecting custom code on ERP apps, threat detection response, XDR - same thing, same principles, you're just removing that blind spot."
In this video interview with Information Security Media Group at RSA Conference 2023, Nunez also discusses:
- How to stop money-stealing via ERP apps;
- Trends in application security;
- Financial risks associated with attacks on ERP apps.
Nunez drives the strategic direction of Onapsis. He began his career as a cybersecurity researcher and was the first to publicly present at major conferences such as RSA, Black Hat and SANS on cybersecurity risks affecting SAP platforms and how to mitigate them. He was the developer of the first open-source ERP penetration testing framework and has discovered critical security vulnerabilities in SAP, Oracle, IBM and Microsoft applications.