en

Docker Infrastructure Security Audit

Client:
HUSPI — a software development company for healthcare and financial organizations
Industry:
Software Development
Focus:
Protection of personal, medical, and corporate data within the company’s digital products
Main challenge:
Security assessment of servers in Docker containers to prevent unauthorized access and data leaks
Market:
Ukraine, Poland, Germany (international segment)
Services provided:
White-box pentest of servers, containers, and network
Key Takeaways
  • Strengthened container security posture
  • Reduced data leak risk by 80–90 percent
  • Identified 9 vulnerabilities, including 2 critical ones
  • Provided a detailed report with recommendations for strengthening the infrastructure
  • Critical vulnerabilities were eliminated within 24 hours of reporting
  • 24 hours
    to fix the vulnerability
    9
    vulnerabilities detected
    80–90%
    lower risk of data breaches
    Docker Infrastructure Security Audit
    Do Docker containers really guarantee isolation and security? The IT company HUSPI turned to Datami for a scheduled penetration test of its internal infrastructure. We performed white-box testing of Docker servers, identified critical vulnerabilities, and helped reduce the risk of data leaks by 80–90%.

    HUSPI is a mid-sized IT company registered in Poland that develops software for the healthcare, financial, and real estate sectors. Thousands of users work with its web platforms and APIs every day.

    HUSPI operates in regulated industries and complies with international security standards (including GDPR), making the protection of personal, medical, and corporate data critically important for the company.

    Objectives and challenges
    HUSPI initiated a scheduled security assessment due to the risks of unauthorized access to internal systems and potential data leaks from the containerized environment.

    The goal of the project was to identify vulnerabilities and test the security of the internal infrastructure to ensure compliance with international security standards, including GDPR and healthcare requirements.
    • Conduct a white-box penetration test of internal servers and containers (frontend and backend).
    • Assess the isolation of Docker environments and network interactions, including the risks of container breakout.
    • Identify vulnerabilities, assess risks, and prepare a detailed report with recommendations.
    icon
    Penetration testing
    White-box testing of frontend and backend containers
    icon
    Vulnerability detection
    Identification and analysis of risks within the internal infrastructure
    icon
    Reporting and recommendations
    Detailed report on threats and security improvements
    Our approach

    Datami assessed HUSPI’s internal infrastructure, including frontend and backend servers in Docker containers.

    The primary method used was a white-box penetration test: the team had access to technical information for the most in-depth analysis.

    We combined manual and automated testing methods, analyzed configurations, and examined inter-container interactions. SSH access enabled work in the live environment.

    Despite a limited budget, the team identified critical vulnerabilities and provided effective recommendations.

    White-box
    White-box
    The testing was carried out with full access to the internal infrastructure, allowing the team to simulate the most likely attack vectors and obtain an objective picture of the security posture.
    Main project stages and solutions

    During the project, Datami used specific scenarios to test Docker container isolation and adapted the workflow in response to access delays.

    Analysis of the key components of the container environment enabled the team to cover priority risk areas and respond promptly to client requests.

    • Preparation:
      Analysis and clarification of technical details, test planning, and identification of critical areas for assessment.
    • Penetration testing:
      White-box pentest of two Docker servers, combining manual and automated approaches to detect vulnerabilities in network interactions and container isolation.
    • Analysis and reporting:
      Preparation of a detailed report describing the identified risks, recommendations for remediation, and measures to improve security.
    How we can help you?

    Every cybersecurity case study we solve involves deep analysis, tailored solutions, and measurable results.
    Datami has already helped over 600 companies strengthen their digital defenses — and we can do the same for your business.
    Ready to take action?

    Let’s start with a free consultation!
    Results and recommendations
    Results and recommendations

    At the start of the project, HUSPI’s internal infrastructure faced high risks: lack of container audits and weak network segmentation posed threats to sensitive data.

    During the white-box pentest, Datami discovered 9 vulnerabilities: 2 critical (including database access via inter-container communication), 3 medium, and 4 low.

    HUSPI received clear recommendations to strengthen cybersecurity:

    1. Regular audits of Docker configurations
    2. Restriction of inter-container access
    3. Implementation of a Zero Trust approach and updated logging

    After implementing the recommendations, the risk level was reduced to medium: the likelihood of data loss due to inter-container communication decreased by 80–90%, helping to avoid over $50,000 in potential financial losses.

    The project was completed in 2 weeks instead of the standard 3–4. Critical vulnerabilities were fixed by the client within 24 hours.

    Our certificates
    Key project outcomes

    With Datami’s help, HUSPI improved its cybersecurity in just 2 weeks: the company gained a clear picture of potential risks, received an actionable roadmap, and strengthened its GDPR compliance. All project objectives were achieved.

    This case proves that even companies specializing in complex digital solutions need regular penetration testing to avoid financial, legal, and reputational losses.

    Aspect
    Before the project
    After implementation
    Security status
    High risk due to lack of container audits
    Risk level reduced, 9 vulnerabilities found
    Critical vulnerabilities
    Possible unauthorized access to databases
    2 critical issues found, fixed within 24 hours
    Account compromise
    Potential due to network isolation issues
    Risk reduced after configuration improvements
    Security compliance
    Partial compliance with policies and GDPR
    Improved alignment with standards
    Timeline
    Typically 3–4 weeks
    Project completed in 2 weeks
    More success stories with Datami
    Browse other project case studies
    DDoS Protection and 24/7 Cyber Monitoring

    DDoS Protection and 24/7 Cyber Monitoring

    • Implemented the DataGuard solution based on Cloudflare to protect the website
    • Established reliable protection against DDoS attacks and bot traffic
    Services:
    Implementation of DataGuard and Cloudflare, 24/7 monitoring
    Aug 8, 2025
    Website Protection from DDoS Attacks

    Website Protection from DDoS Attacks

    • Implemented the DataGuard solution for website protection
    • DDoS protection deployed within 3 days
    Services:
    Website protection with DataGuard (Cloudflare), continuous monitoring, Cloudflare infrastructure management
    Aug 8, 2025
    Protection of E-commerce Websites From DDoS via DataGuard

    Protection of E-commerce Websites From DDoS via DataGuard

    • Implemented DataGuard to protect from DDoS attacks
    • Enabled rapid incident response
    Services:
    24/7 cybersecurity monitoring, integration with Cloudflare
     
    Aug 7, 2025
    Security image
    Ready to assess your project's security?
    Contact Datami — we’ll help you identify risks, strengthen your cybersecurity, and confidently pass certification.
    Datami articles
    Pentesting Tools: Who and How Created Metasploit Datami Newsroom
    Datami Newsroom

    Pentesting Tools: Who and How Created Metasploit

    Metasploit is known for everyone interested in cybersecurity. It is not just a framework but a key driver of ethical hacking and pentesting, becoming the standard for thousands of professionals.

    Aug 26, 2025 3 min
    Fraudulent Applications in the Firefox Browser Datami Newsroom
    Datami Newsroom

    Fraudulent Applications in the Firefox Browser

    More than 40 fraudulent programs have been identified in the Mozilla Firefox browser. These extensions mimic legitimate wallet tools from popular platforms. The large-scale campaign has been ongoing since April 2025.

    Aug 22, 2025 3 min
    Large-Scale Fraudulent Operations on Android Datami Newsroom
    Datami Newsroom

    Large-Scale Fraudulent Operations on Android

    According to recent data, applications were discovered that loaded out-of-context ads onto users’ screens. The applications have already been removed by Google from the Play Store. The peak activity exceeded 1.2 billion requests per day.

    Aug 22, 2025 3 min
    Order a free consultation
    We value your privacy
    We use cookies to enhance your browsing experience, serve personalized ads or content, and analyze our traffic. By clicking "Accept All", you consent to our use of cookies. Cookie policy