The brokerage company developed an online platform where users could create polls and place monetary bets on the outcomes. Web service security was critically important for the client, as they operate in a high-risk financial sector and handle sensitive data.
After a series of DDoS attacks, the company's product required a thorough assessment of its web applications to enhance cybersecurity and prevent future incidents.
To assess the security of the betting platform, we applied a black-box pentesting strategy along with both automated and manual testing of the web applications. We used OSINT techniques and tools such as Burp Suite, Nessus, and OWASP ZAP to identify both technical and logical vulnerabilities.
Based on the penetration testing results, the Datami team compiled a report with findings and recommendations. To further enhance protection against DDoS attacks and bots, DataGuard and Cloudflare were implemented.
After thorough preparation, the Datami team conducted full-scale black-box testing: they simulated potential attacks on the web applications and compiled a report on the discovered vulnerabilities.
A separate stage involved implementing protective solutions, including the integration of DataGuard to defend against DDoS attacks and bots.
Every
During the testing of the betting platform, the Datami team discovered 30 vulnerabilities: 1 high, 7 medium, 19 low, and 3 informational. These affected both technical configurations and access to functionality in the user and admin areas.
Based on the pentest results, we prepared a report and provided recommendations to enhance digital security:
Most vulnerabilities were addressed immediately, significantly increasing the platform’s overall security level.
Thanks to the project, 30 vulnerabilities were identified in the betting service, and protection against DDoS attacks was implemented using Dataguard and Cloudflare. As a result, the client achieved a significantly higher level of cybersecurity and platform stability.
This case study highlights that even smaller market players can become targets for hackers. If your company handles payment information or processes personal data, security testing is essential.
California-based company Ingram Micro, headquartered in Irvine, California, has reported the discovery of ransomware in its internal systems. The attackers caused a disruption in order processing.
Every year, companies are increasingly integrating automated tools into their cybersecurity processes. Automation is just one auxiliary tool that comes with both advantages and disadvantages that must be kept in mind.
The aviation industry is one of the most technologically advanced sectors, significantly influenced by digitalization. At the same time, this increases its vulnerability to cyber threats, which can have catastrophic consequences.