Why boards should be obsessed with their most ‘boring’ systems | CyberScoop<\/title> <meta name=\"description\" content=\"Thev Jaguar Land Rover cyberattack spotlights the growing risk to SAP and other ERP systems, and why boards are demanding faster patching, clearer ownership, and tested recovery plans.\"> <link rel=\"canonical\" href=\"https:\/\/cyberscoop.com\/boardroom-erp-cybersecurity-sap-ransomware-resilience-op-ed\/\"> <meta property=\"og:locale\" content=\"en_US\"> <meta property=\"og:type\" content=\"article\"> <meta property=\"og:title\" content=\"Why boards should be obsessed with their most 'boring' systems\"> <meta property=\"og:description\" content=\"Thev Jaguar Land Rover cyberattack spotlights the growing risk to SAP and other ERP systems, and why boards are demanding faster patching, clearer ownership, and tested recovery plans.\"> <meta property=\"og:url\" content=\"https:\/\/cyberscoop.com\/boardroom-erp-cybersecurity-sap-ransomware-resilience-op-ed\/\"> <meta property=\"og:site_name\" content=\"CyberScoop\"> <meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/cyberscoop\/\"> <meta property=\"article:published_time\" content=\"2026-02-05T11:00:00+00:00\"> <meta property=\"og:image\" content=\"https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2026\/02\/why-boards-should-be-obsessed-with-their-most-boring-systems-1.jpg\"> <meta property=\"og:image:width\" content=\"4608\"> <meta property=\"og:image:height\" content=\"2900\"> <meta property=\"og:image:type\" content=\"image\/jpeg\"> <meta name=\"author\" content=\"Greg Otto\"> <meta name=\"twitter:card\" content=\"summary_large_image\"> <meta name=\"twitter:creator\" content=\"@gregotto\"> <meta name=\"twitter:site\" content=\"@CyberScoopNews\">  <link rel=\"dns-prefetch\" href=\"\/\/securepubads.g.doubleclick.net\">\n<link rel=\"dns-prefetch\" href=\"\/\/use.typekit.net\">\n<link rel=\"alternate\" type=\"application\/rss+xml\" title=\"CyberScoop \u00bb Feed\" href=\"https:\/\/cyberscoop.com\/feed\/\">\n<link rel=\"alternate\" type=\"application\/rss+xml\" title=\"CyberScoop \u00bb Comments Feed\" href=\"https:\/\/cyberscoop.com\/comments\/feed\/\"> <link rel=\"stylesheet\" id=\"all-css-2\" href=\"https:\/\/cyberscoop.com\/wp-includes\/css\/dist\/block-library\/style.min.css?m=1770142553g\" type=\"text\/css\" media=\"all\"> <link rel=\"stylesheet\" id=\"all-css-6\" href=\"https:\/\/cyberscoop.com\/wp-content\/mu-plugins\/search\/elasticpress\/dist\/css\/related-posts-block-styles.min.css?m=1768841770g\" type=\"text\/css\" media=\"all\"> <link rel=\"stylesheet\" id=\"all-css-8\" href=\"https:\/\/cyberscoop.com\/wp-content\/themes\/scoopnewsgroup\/dist\/css\/frontend.css?m=1767808656g\" type=\"text\/css\" media=\"all\">\n<link rel=\"stylesheet\" id=\"typekit-css\" href=\"https:\/\/use.typekit.net\/itk2qbh.css?ver=13897d660a0ac2c9c7d1\" media=\"all\"> <link rel=\"https:\/\/api.w.org\/\" href=\"https:\/\/cyberscoop.com\/wp-json\/\"><link rel=\"alternate\" title=\"JSON\" type=\"application\/json\" href=\"https:\/\/cyberscoop.com\/wp-json\/wp\/v2\/posts\/87684\"><meta name=\"generator\" content=\"WordPress 6.8.3\">\n<link rel=\"shortlink\" href=\"https:\/\/cyberscoop.com\/?p=87684\">\n<link rel=\"alternate\" title=\"oEmbed (JSON)\" type=\"application\/json+oembed\" href=\"https:\/\/cyberscoop.com\/wp-json\/oembed\/1.0\/embed?url=https%3A%2F%2Fcyberscoop.com%2Fboardroom-erp-cybersecurity-sap-ransomware-resilience-op-ed%2F\">\n<link rel=\"alternate\" title=\"oEmbed (XML)\" type=\"text\/xml+oembed\" href=\"https:\/\/cyberscoop.com\/wp-json\/oembed\/1.0\/embed?url=https%3A%2F%2Fcyberscoop.com%2Fboardroom-erp-cybersecurity-sap-ransomware-resilience-op-ed%2F&format=xml\">   <link rel=\"icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=32\" sizes=\"32x32\">\n<link rel=\"icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=192\" sizes=\"192x192\">\n<link rel=\"apple-touch-icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=180\">\n<meta name=\"msapplication-TileImage\" content=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=270\"> <\/head><body class=\"wp-singular post-template-default single single-post postid-87684 single-format-standard wp-theme-scoopnewsgroup wp-child-theme-cyberscoop\" id=\"readabilityBody\"> <a href=\"https:\/\/cyberscoop.com\/boardroom-erp-cybersecurity-sap-ransomware-resilience-op-ed\/#main\" class=\"skip-to-content-link visually-hidden-focusable\">Skip to main content<\/a> <\/p>\n<div class=\"ad ad--top ad--top-desktop\">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p> <main id=\"main\" role=\"main\" tabindex=\"-1\"> <\/p>\n<div class=\"ad ad--top ad--top-mobile\">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<section id=\"stickybar\" class=\"stickybar stickybar--newsletter js-stickybar\" readability=\"0.82\"> <button class=\"stickybar__close js-stickybar-close\" aria-controls=\"stickybar\"> <svg class=\"icon icon--close\" width=\"21\" height=\"22\" viewBox=\"0 0 21 22\" fill=\"none\"><path d=\"m.822.518-.805.805L9.695 11 .017 20.678l.805.805 9.678-9.678 9.677 9.678.806-.805L11.305 11l9.678-9.677-.806-.805-9.677 9.677L.822.518Z\" fill=\"currentColor\" \/><\/svg> <span class=\"visually-hidden\">Close<\/span> <\/button> <\/section>\n<article class=\"single-article content\">\n<div class=\"single-article__container js-single-article-content\">\n<header class=\"single-article__header \">\n<div class=\"single-article__header-content\" readability=\"29.886120996441\">\n<ul class=\"single-article__eyebrow\">\n<li class=\"single-article__category\"> <a class=\"single-article__category-link\" href=\"https:\/\/cyberscoop.com\/boardroom-erp-cybersecurity-sap-ransomware-resilience-op-ed\/\"> <span>Commentary<\/span> <\/a> <\/li>\n<\/ul>\n<p>  <br \/>\n<audio id=\"audio-player\" src=\"https:\/\/wp-tts-cdn.api.scpnewsgrp.com\/cyberscoop\/87684\/english.openai.mp3\"><\/audio> <\/p>\n<div readability=\"11\">\n<div>\n<p>Listen to this article<\/p>\n<p>  <\/p>\n<p>0:00<\/p>\n<\/p><\/div>\n<p>  <\/p>\n<p> <span id=\"tts-tooltip\">Learn more.<\/span> <span> This feature uses an automated voice, which may result in occasional errors in pronunciation, tone, or sentiment. <\/span> <\/p>\n<\/div>\n<p>  <\/div>\n<div class=\"single-article__cover-wrap\">\n<figure class=\"single-article__cover\"> <img data-recalc-dims=\"1\" fetchpriority=\"high\" width=\"640\" height=\"403\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2026\/02\/why-boards-should-be-obsessed-with-their-most-boring-systems.jpg?resize=640%2C403&ssl=1\" class=\"single-article__cover-image wp-post-image\" alt decoding=\"async\" fetchpriority=\"high\" srcset=\"https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2026\/02\/why-boards-should-be-obsessed-with-their-most-boring-systems-1.jpg 4608w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2026\/02\/why-boards-should-be-obsessed-with-their-most-boring-systems-1.jpg?resize=300,189 300w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2026\/02\/why-boards-should-be-obsessed-with-their-most-boring-systems-1.jpg?resize=768,483 768w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2026\/02\/why-boards-should-be-obsessed-with-their-most-boring-systems-1.jpg?resize=1024,644 1024w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2026\/02\/why-boards-should-be-obsessed-with-their-most-boring-systems-1.jpg?resize=1536,967 1536w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2026\/02\/why-boards-should-be-obsessed-with-their-most-boring-systems-1.jpg?resize=2048,1289 2048w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2026\/02\/why-boards-should-be-obsessed-with-their-most-boring-systems-1.jpg?resize=600,378 600w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2026\/02\/why-boards-should-be-obsessed-with-their-most-boring-systems-1.jpg?resize=267,168 267w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2026\/02\/why-boards-should-be-obsessed-with-their-most-boring-systems-1.jpg?resize=535,337 535w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2026\/02\/why-boards-should-be-obsessed-with-their-most-boring-systems-1.jpg?resize=1073,675 1073w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2026\/02\/why-boards-should-be-obsessed-with-their-most-boring-systems-1.jpg?resize=1339,843 1339w\" sizes=\"(max-width: 1073px) 100vw, 1073px\"><figcaption> (Getty Images) <\/figcaption><\/figure>\n<\/p><\/div>\n<\/header>\n<div class=\"single-article__content\">\n<div class=\"single-article__content-inner has-drop-cap\"> <html readability=\"81.331937172775\"><body readability=\"164.04916095486\"><\/p>\n<p>Following a series of high-profile cyberattacks, boards of directors are now requiring their organizations to take greater responsibility for the risks posed by enterprise resource planning (ERP) systems pose after a series of high-profile cyberattacks. The Jaguar Land Rover (JLR), incident in Sept. 2025 illustrates the severe consequences of such attacks. The cyberattack forced JLR to halt production for six weeks, making it the costliest cyberattack in Britain\u2019s history. <a href=\"https:\/\/media.jaguarlandrover.com\/news\/2025\/11\/jlr-performance-impacted-challenging-quarter?_gl=1*1jn2a2n*_ga*MTA5MzAwMzYxNC4xNzYzMTUwMTM1*_ga_G78VTFVFM0*czE3NjM0MTU4MTIkbzMkZzEkdDE3NjM0MTc4MTUkajYwJGwwJGgw\">The <\/a>company\u2019s revenue <a href=\"https:\/\/media.jaguarlandrover.com\/news\/2025\/11\/jlr-performance-impacted-challenging-quarter?_gl=1*1jn2a2n*_ga*MTA5MzAwMzYxNC4xNzYzMTUwMTM1*_ga_G78VTFVFM0*czE3NjM0MTU4MTIkbzMkZzEkdDE3NjM0MTc4MTUkajYwJGwwJGgw\">declined 24 percent that quarter<\/a>, accounting for potentially over a $1.2 billion drop in earnings, and subsequently reported <a href=\"https:\/\/media.jaguarlandrover.com\/news\/2026\/01\/jlr-q3-sales-impacted-cyber-incident-previously-indicated\">a 43.3% wholesale sales volume drop<\/a> the following quarter.<\/p>\n<p>For decades, organizations have treated ERP systems like SAP as back-office workhorses. However, the JLR incident\u2014carried out by executed by the cybercrime group ShinyHunters \u2014has thrust ERP systems into the spotlight. That shift in attention is critical: today, <a href=\"https:\/\/www.sap.com\/about\/customer-stories.html\">90% of the Fortune 500<\/a> use SAP, making these systems \u201ccrown jewel\u201d assets that require the highest level of protection.<\/p>\n<p>The threat is escalating. A recent Google Cloud Security <a href=\"https:\/\/services.google.com\/fh\/files\/misc\/cybersecurity-forecast-2026-en.pdf\">report<\/a> forecasts that ransomware operations specifically designed to target critical enterprise applications such as ERP systems will emerge in 2026, forcing organizations to make quick ransom payments and sacrifice business resilience. <\/p>\n<p>In our roles as board members, advisers, and cybersecurity CEOs, we\u2019re witnessing a fundamental shift in how organizations approach ERP security: the conversation has moved from compliance to survival. Organizations are grappling with critical question: Who owns the risk? What is our recovery time? Can we patch critical ERP vulnerabilities within 72 hours? Do we have visibility inside the application?<\/p>\n<h4 class=\"wp-block-heading\" id=\"h-erp-risks-are-an-existential-threat\"> ERP risks are an existential threat<\/h4>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>To understand the severity of ERP security risks, the C-suite must first recognize how critical these sytems are. ERP systems are the operating system of modern businesses: They process invoices, manage supply chains, record revenue, pay employees, ship products, and more. The scale is staggering: SAP\u2019s customers alone are responsible for <a href=\"https:\/\/www.sap.com\/documents\/2017\/04\/4666ecdd-b67c-0010-82c7-eda71af511fa.html#:~:text=%E2%80%A2%20SAP%20customers%20generate%208,Financials\">84% of the world\u2019s commerce<\/a>. \u2013 Given this ubiquity, if your organization\u2019s leadership can\u2019t confirm whether you\u2019re using SAP, you almost certainly are.<\/p>\n<p>In 2025, more than 500 companies fell victim to the <a href=\"https:\/\/cyberscoop.com\/sap-netweaver-zero-day-exploit-cve-2025-31324\/\">SAP NetWeaver zero-day vulnerability<\/a>. This attack underscores what many security practitioners have warned: ERP application security has evolved from a \u2018nice to have\u2019 to a business-critical necessity.<\/p>\n<p>When Stoli Group\u2019s US subsidiaries <a href=\"https:\/\/www.reuters.com\/legal\/litigation\/vodka-maker-stolis-us-companies-file-bankruptcy-after-cyberattack-2024-12-02\/\">filed for bankruptcy<\/a> in 2024 following a ransomware attack on its ERP system, it demonstrated a stark reality: losing these system can lead to a company shutting its doors. When an organization\u2019s central nervous system goes offline, the entire business stops functioning.<\/p>\n<p>Unfortunately, the adversaries understand this inherent leverage better than we do. According to <a href=\"https:\/\/onapsis.com\/resources\/webinars\/the-state-of-sap-security-2025-webinar\/\">Onapsis research<\/a>, SAP vulnerabilities grew by 39 percent in 2025. The cybercriminal marketplace price for SAP exploits has grown 400% (to more than $250,000) since 2020, which reflects the immense ROI of holding a Fortune 500 company\u2019s operational capacity hostage.<\/p>\n<p>The timeline for defense has become critically compressed. In 2025, threat actors are exploiting SAP security vulnerabilities within 72 hours of patch releases. Unprotected ERP systems deployed in the cloud are discovered and compromised in less than 3 hours. Meanwhile, the average enterprise patch cycle takes weeks or even months due to the rigorous testing required for complex, customized ERP environments. This mismatch creates a dangerous window of vulnerability.<\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<h4 class=\"wp-block-heading\" id=\"h-the-regulatory-compliance-vise\">The regulatory compliance vise<\/h4>\n<p>Boards face mounting pressure from an increasingly stringent global regulatory environment focused on securing critical data and infrastructure. ERP systems house multiple types of highly regulated data simultaneously\u2014including financial records, personal employee information, customer data, and supply chain details\u2014making them a focal point for regulatory scrutiny.<\/p>\n<p>For public companies in the United States, Sarbanes-Oxley (SOX) requires attestation of financial reporting. The security of ERP systems is a SOX control issue because a breach could cause the efficacy of these systems to be compromised.<\/p>\n<p>In the European Union (EU), GDPR regulations penalize companies that fail to protect personally identifiable information (PII). ERP systems house the vast majority of employee and customer data.<\/p>\n<p>SEC disclosure rules in the United States and two other EU regulations, NIS2 and DORA, have introduced personal liability for board members and executives who fail to oversee their cybersecurity risks. A director can no longer say, \u201cI didn\u2019t understand the technical details.\u201d Ignorance is now a legal liability.<\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<h4 class=\"wp-block-heading\" id=\"h-a-boardroom-playbook-for-erp-resilience\">A boardroom playbook for ERP resilience<\/h4>\n<p>As board members and advisors to multiple companies and audit committees, we have three key expectations for how organizations should approach ERP security.<\/p>\n<p>First, boards need risk presented in dollar terms. Instead of asking for money to \u201cpatch technical vulnerabilities,\u201d CISOs should tell the board exactly how much revenue is at risk. When requesting budget to secure SAP, frame it as an investment to protect specific revenue streams. This helps boards understand what they stand to lose, not just what they need to spend.<\/p>\n<p>Second, stop treating security and productivity as opposing forces. Yes, patching systems might cause a brief disruption. But that minor inconvenience is nothing compared to the catastrophic impact of a total system lockout like the one ShinyHunters executed against JLR. CISOs should partner with CIOs to deploy automated monitoring tools that can detect potential exploits and prioritize patches for the most critical ERP vulnerabilities.<\/p>\n<p>Third, someone must own responsibility for protecting these \u201ccrown jewel\u201d systems. Too often, there\u2019s a gray area between the CISO (who sets security policy), the CIO (who manages the technology infrastructure), and the ERP vendor. Boards must demand a clear shared responsibility model that defines who is accountable for what. It\u2019s important to note that ERP vendors are not responsible for securing the application and data once deployed\u2014which makes clear internal ownership even more critical.<\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>Board members should be demanding answers to these questions: Do we have visibility into our ERP risk? Would we have visibility into an active attack?<\/p>\n<p>We must assume a breach will happen. The only way to validate resilience is to test it. Boards should mandate tabletop exercises specifically designed around an ERP ransomware scenario, asking further questions like, \u201cHow do we communicate with suppliers?,\u201d \u201cHow do we build and ship our products?,\u201d \u201cHow do we make payroll?,\u201d and \u201cHow do we restore from immutable backups if the primary data is compromised?\u201d Organizations must test their resilience before a crisis strikes, not during one.<\/p>\n<h4 class=\"wp-block-heading\" id=\"h-a-license-to-operate\">A license to operate<\/h4>\n<p>The Jaguar Land Rover compromise was a watershed moment because it stripped away the illusion that our core systems are safe behind firewalls. Attackers have shifted their focus to critical business systems. They\u2019ve professionalized their operations and dramatically increased the speed of their attacks.<\/p>\n<p>For the C-suite and boards, the era of plausible deniability is over. Security is no longer just an IT expense; it\u2019s what keeps your doors open. If you cannot protect the integrity of your financial data and the continuity of your supply chain, you do not have a viable business.<\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>Just as boards have visibility into risk, CISOs should have visibility into all ERP instances. Organizations require four critical capabilities: discovery (identifying all ERP systems), assessment (finding vulnerabilities such as missing patches, weak configurations, and insecure custom code), real-time monitoring (detecting suspicious activity that may indicate an attack), and incident response (being able to quickly investigate and contain an ERP incident).<\/p>\n<p>The decisions made in the boardroom today will affect the outcomes tomorrow. The next JLR-like event is most likely already unfolding. The only variable is whether your organization will be the next cautionary tale or the defender that held the line.<\/p>\n<p><\/body> <\/p>\n<footer class=\"single-article__footer\" readability=\"0.43939393939394\">\n<div class=\"author-card\" readability=\"7\">\n<p><h4 class=\"author-card__name\">Written by Dave DeWalt and Mariano Nunez<\/h4>\n<\/p><\/div>\n<div class=\"single-article__tags-container\">\n<h4 class=\"single-article__tags-title\">In This Story<\/h4>\n<\/p><\/div>\n<\/footer>\n<p> <\/html><\/div>\n<\/p><\/div>\n<\/p><\/div>\n<div class=\"single-article__ads js-single-article-sidebar\">\n<div class=\"ad ad--sidebar js-single-article-sidebar-5 ad--rightrail_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div class=\"ad ad--sidebar js-single-article-sidebar-4 ad--rightrail_2 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div class=\"ad ad--sidebar js-single-article-sidebar-3 ad--rightrail_3 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div><\/div>\n<\/article>\n<section class=\"latest-podcasts\">\n<h2 class=\"latest-podcasts__title\"> Latest Podcasts\t<\/h2>\n<\/section>\n<div class=\"top-categories\">\n<div class=\"top-categories__container\">\n<h3 class=\"top-categories__category-title\">Government<\/h3>\n<\/p><\/div>\n<div class=\"top-categories__container\">\n<h3 class=\"top-categories__category-title\">Technology<\/h3>\n<\/p><\/div>\n<\/p><\/div>\n<p> <\/main> <\/p>\n<div class=\"ad ad--bottom \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div id=\"interstitial\" class=\"welcome__container\"> <button id=\"close-modal-1\" class=\"welcome__clickable_area\"><\/button> <\/p>\n<div class=\"welcome__ad_wrapper\">\n<p> <button id=\"close-modal-3\" class=\"welcome__continue-button\">Continue to CyberScoop<\/button> <\/p>\n<\/p><\/div>\n<\/p><\/div>\n<p>   <\/body> <a href=\"https:\/\/cyberscoop.com\/boardroom-erp-cybersecurity-sap-ransomware-resilience-op-ed\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Why boards should be obsessed with their most ‘boring’ systems<\/p>\n","protected":false},"author":11,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[280,5913,5914,4197,2151],"tags":[284,5915,5916,4198,2155],"class_list":["post-8328","post","type-post","status-publish","format-standard","hentry","category-commentary","category-enterprise-resource-planning-erp-systems","category-jaguar-land-rover","category-sap","category-shinyhunters","tag-commentary","tag-enterprise-resource-planning-erp-systems","tag-jaguar-land-rover","tag-sap","tag-shinyhunters"],"featured_image_urls":{"full":"","thumbnail":"","medium":"","medium_large":"","large":"","1536x1536":"","2048x2048":"","chromenews-featured":"","chromenews-large":"","chromenews-medium":""},"author_info":{"display_name":"Cyber Scoop","author_link":"https:\/\/ddi.mohflo.net\/index.php\/author\/cyberscoop\/"},"category_info":"<a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/commentary\/\" rel=\"category tag\">Commentary<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/enterprise-resource-planning-erp-systems\/\" rel=\"category tag\">Enterprise resource planning (ERP) systems<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/jaguar-land-rover\/\" rel=\"category tag\">Jaguar Land Rover<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/sap\/\" rel=\"category tag\">SAP<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/shinyhunters\/\" rel=\"category tag\">ShinyHunters<\/a>","tag_info":"ShinyHunters","comment_count":"0","jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/8328","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/users\/11"}],"replies":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/comments?post=8328"}],"version-history":[{"count":0,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/8328\/revisions"}],"wp:attachment":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/media?parent=8328"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/categories?post=8328"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/tags?post=8328"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}

{"id":8328,"date":"2026-02-05T05:00:00","date_gmt":"2026-02-05T11:00:00","guid":{"rendered":"https:\/\/cyberscoop.com\/?p=87684"},"modified":"2026-02-05T05:00:00","modified_gmt":"2026-02-05T11:00:00","slug":"why-boards-should-be-obsessed-with-their-most-boring-systems","status":"publish","type":"post","link":"https:\/\/ddi.mohflo.net\/index.php\/2026\/02\/05\/why-boards-should-be-obsessed-with-their-most-boring-systems\/","title":{"rendered":"Why boards should be obsessed with their most \u2018boring\u2019 systems"},"content":{"rendered":"