The requirement.
Coller capital understood the importance of independent security assessments but knew it’s almost impossible to ‘mark your own homework’. Naturally, this means it’s extremely difficult to find vulnerabilities in your own systems. As such, Coller Capital knew they needed the support of an external team.
The solution.
Our experts conducted a professional web app penetration test, in the same way that an attacker would aim to break into Coller Capital’s systems, however our team did this in a sandbox environment, to ensure the business was unharmed and still operational.
This particular ethical hacking engagement was designed to assess the architecture, design and configuration of Coller Capital’s web applications.
We followed a five-step process to ensure no stone was unturned, this included:
✅ Passive & active information gathering
✅ System scanning & enumeration
✅ Gaining access to systems & exploiting vulnerabilities
✅ Expanding reach & maintaining access
✅ System clean up & reporting
Our Offensive Security Team carried out this work by applying known realistic attack tactics, techniques, and procedures (TTP’s), used in real world sophisticated attacks and compromises, to all external facing digital assets.
These TTP’s were conducted to identify cyber security risks that could lead to unauthorised access and/or data exposure. Following which, we provided a thorough report, highlighting any vulnerabilities and attack vectors identified, with actionable recommendations to remediate any issues identified.
Want to know more about how The Microsoft Cloud & Cyber Security Specialists can help to transform your organisation? Get in touch today.
