Pentesting of Mobile App and Internal Network

Client:

The private investor in Ukraine’s energy sector

Industry:

Energy

Focus:

Security assessment of mobile applications and network infrastructure as part of the annual audit

Main challenge:

Identifying potential vulnerabilities that could lead to data leakage

Market:

Local (Ukraine)

Services provided:

Mobile app pentesting, infrastructure pentesting

Key Takeaways

Critical, medium, and low vulnerabilities were identified

Risks were demonstrated through public Wi-Fi access

Gray-box and white-box penetration tests were conducted using both automated and manual methods

A report was prepared with recommendations to strengthen cybersecurity

strategies used for penetration testing

< 5

weeks total testing time

A report

with recommendations was prepared

Pentesting of Mobile App and Internal Network

Mar 7, 2025

How can you be sure your critical infrastructure is truly secure? Penetration testing is one of the most effective ways to verify it in practice. During a scheduled security assessment, Datami specialists discovered several vulnerabilities in the client company’s mobile applications and internal infrastructure. Thanks to the penetration test, a potential data breach was prevented.

A major energy corporation in Ukraine operates across the full energy cycle: generating electricity from solar, wind, and thermal power plants; extracting coal and gas; engaging in energy trading; distributing electricity; and developing a nationwide network of charging stations.

The company operates in the field of critical infrastructure, processes confidential personal and corporate data, and complies with regulatory requirements, making information security a strategic priority.

Tasks and challenges

Datami was engaged to conduct a scheduled penetration test of mobile applications and internal infrastructure as part of an annual security assessment. The objective was to identify potential threats to digital assets that process confidential information and to provide technical recommendations for strengthening the protection of critical infrastructure.

Conduct gray-box penetration testing of mobile applications for clients and employees
Test the internal network (white-box), including Wi-Fi, with a focus on access policies
Provide a technical report with findings and recommendations to mitigate risks

Web pentest + mobile pentest

Gray-box testing with user and administrator accounts

Infrastructure pentest

Review of network restrictions, access controls, and security configurations

Report and recommendations

Document with identified risks and recommendations for mitigation

Datami Methodology: Security Assessment of Critical Infrastructure

Our approach

A combined penetration test was conducted using both gray-box and white-box approaches. We applied both static and dynamic analysis, combining manual and automated methods. Constant communication with the client was maintained, as unstable application performance complicated the testing process.

During testing, the team managed to bypass corporate network restrictions and discovered Wi-Fi access through an unprotected device. This made it possible to demonstrate real attack vectors.

White-box

Internal infrastructure testing with access to network configurations and policies

Gray-box

Mobile application testing using administrator and user accounts, without full access to the source code

Key work stages and solutions

The Datami team first conducted static and dynamic testing of the mobile applications, followed by an assessment of the company’s internal infrastructure, with particular focus on the Wi-Fi network and access policies. During the process, the team had to adapt to technical issues with the applications and clarify testing scenarios.

Preparation

Analysis of initial data, access levels, and testing scenarios; selection of tools for mobile and network testing
Security testing

Gray-box testing of mobile applications and white-box assessment of Wi-Fi and internal network; network restriction bypass; detection of configuration vulnerabilities
Analysis and reporting

Preparation of a technical report detailing critical and medium vulnerabilities, along with recommendations for mitigation

Fewer critical risks — more confidence

Results and recommendations

During the security assessment at , the Datami team identified several critical, as well as a number of medium and low vulnerabilities in mobile applications and internal infrastructure. Some of the risks were related to network access and security policy configurations. During the testing process, our penetration testers also noted issues in application functionality.

As a result, the client received a detailed technical report and a recommended action plan, including:

Remediation of vulnerabilities in mobile applications
Restriction of Wi-Fi access and protection of public devices
Review and update of network access policies
Strengthening control over internal privileges

After implementing the recommendations, a reduction in the risk of data leakage and unauthorized access is expected.

Key project results

As a result of the collaboration with Datami, the organization received a detailed technical report, an assessment of the security level of its mobile applications and network infrastructure, and recommendations for vulnerability remediation.

The testing was completed within the planned timeframe — 4–5 weeks.

This case study confirms the importance of regular penetration testing for critical infrastructure companies — both for security control and regulatory compliance.

Direction

Before the project

After implementation

Security status

Limited visibility into mobile applications and the network

A number of critical, medium, and low vulnerabilities identified; remediation plan developed

Critical vulnerabilities

Not previously detected or considered

Identified during the penetration test

Wi-Fi access

Public devices could store confidential passwords

Recommended to restrict access and review interaction points

Security compliance

Partial compliance with expectations

Improved transparency and access control

Timeline

Planned — 4–5 weeks

Completed on time, including additional checks

Pentest and Protection of Platform from DDoS

Discovered 30 vulnerabilities in two web applications
Implemented DataGuard and Cloudflare for DDoS protection

Services:

Black-box web app pentesting, implementation of Dataguard

Jul 8, 2025

P2P Platform Case Study: Comprehensive Security and GDPR Compliance Audit

Identified 10 vulnerabilities, including 3 critical ones
Improved GDPR compliance and avoided potential financial losses of up to $300,000

Services:

Penetration testing, smart contract audit, code security review, testing for SQLi, XSS, and RCE vulnerabilities, OSINT analysis, and cloud infrastructure security assessment

Jun 27, 2025

Case Study: Consulting Company – Security Testing of Web Resources and Infrastructure

Conducted black-box pentest of two web resources and infrastructure components
Identified 19 vulnerabilities: 1 critical, 8 medium, 7 low, and 3 informational

Services:

Black-box pentest of two web resources with different domain zones (UA and UK), and assessment of related infrastructure components

Jun 6, 2025

Back to home page

Datami articles

The Enemy Within: Top 5 Insider Cyber Threats for Companies in 2025

Datami Newsroom

The Enemy Within: Top 5 Insider Cyber Threats for Companies in 2025

Company leaders often greatly underestimate insider cyber threats - yet it is employee actions, even unintentional ones, that can lead to catastrophic consequences.

Jul 8, 2025 3 min

Top 5 Companies That Refused to Pay Hackers a Ransom

Datami Newsroom

Top 5 Companies That Refused to Pay Hackers a Ransom

In May 2025, hackers breached Coinbase, stole data, and demanded a ransom. But the crypto exchange turned to law enforcement for help. This is just one example of how companies are standing up to cyber extortion.

Jul 4, 2025 3 min

Top 5 Cybersecurity Trends in 2025: What Should You Be Ready For?

Datami Newsroom

Top 5 Cybersecurity Trends in 2025: What Should You Be Ready For?

Cybersecurity faces the challenge of rapidly advancing tech. To stay ahead, it’s not enough to follow innovations – we must anticipate them. Forecasting 2025 trends gives a glimpse into the digital future and helps prepare for what’s ahead.

Jul 2, 2025 3 min

Show all articles

On this page you will learn what cookies are and how and when we use them. Definition of the term Cookies Cookies are pieces of data that a web server generates and that a website stores on your user device (computer, smartphone, tablet, etc.). Each website or third-party service sends cookies to the browser installed on your device only if your browser allows it. This is possible if you have not set any restrictions in your browser settings to save cookies. Browsers are a very well thought out technology. They protect personal data and allow websites to access only cookies that were previously sent to them. Cookies are divided into: session cookies. They are stored in the memory of the browser only during your session, after leaving the site immediately removed. permanent. They are stored in the memory of the browser for a long time. Definition of the term “browser” A browser is an application for browsing websites. The most popular browsers are Chrome, Internet Explorer, Firefox and Safari. All listed browsers are safe. In the settings of these browsers, cookies can be easily disabled, as well as change the settings of their work. You can: accept all cookies; ask the browser to notify when cookies are used; do not accept cookies. Cookies on ak1-3.com.ua and how we use them We use cookies to: our site is more functional; to understand how you navigate on the site, what content you consume better, to develop the content strategy of the site; understand how many visits to the site were per day, month, year. Analyze the geographical identity of users of the site, the number of repeated visits and other data. Cookies that we use on our site. Third-party cookies. The buttons of social networks, videos and some other services of our site are the property of other companies. These companies may also use cookies on your device if you have used them on our site or have been previously registered with them. The privacy policy of the use of personal data by these services can be found on the websites of these services. Blocking cookies All browsers allow simple actions to disable cookies. To disable them, you must go to your browser settings and find cookies in them. But we must remember that blocking cookies can have a negative impact on the performance of many websites. How to delete files You can also always delete cookies that are stored on your computer. To do this, follow the instructions of your browser Again, deleting cookies can have a negative effect on the performance of many websites.