External Penetration Testing
Executive Summary
This client is a boutique specialty retailer offering high-quality, on-trend clothing, accessories and personal care products at affordable prices. They reached out to us after moving from a purely physical selling model to selling their products online as their business grew and gained popularity. As it was a new site with multiple vulnerabilities, they enlisted us to perform the first step in proactive security which is an external pentest to find vulnerabilities and methods of attack. We were able to discover their vulnerabilities, implement best practices to secure their network, and provide them with next steps on further securing their organization.
The Business Need
The client wanted us to perform an external pentest in which we find ways to compromise their accessible systems and services, gain access to sensitive information, and discover methods an attacker could use to attack their clients or users.
The Solution
We replicated the activities of real hackers, including executing exploits to attempt to gain control of systems. We also tested the extent of weaknesses discovered to see how far a malicious attacker could go into their network and what the business impact of a successful attack would be.
The Result
Based on the pentest performed, we found a multitude of vulnerabilities for the organization including, but not limited to, insufficient protection of web applications. After examining the findings of the external pentest, we supplied the company with solutions and helped integrate them into their architecture to ensure vulnerabilities were proactively secured in the event of a real attack.