Penetration Testing Services for Fintech
“CYSEC doesn’t just identify the security vulnerabilities in a fintech environment, it provides prioritized remediation advice, and then validates implementation. I recommend CYSEC LAB to any fintech player needing pentesting services.”
CYSEC LAB provided advanced penetration testing services for Altcoinomy to identify and address vulnerabilities in an KYC/AML platform, to protect client data.
Ensure their KYC/AML platform was secure before go-live
CYSEC LAB web-application penetration testing services
Altcoinomy is a Swiss-based fintech company that specializes in cryptocurrency due diligence and institutional trading. Altcoinomy operates an OTC trading desk where it gets clients best pricing on trades. A core part of their operations is the onboarding platform, an online KYC/AML platform facilitating the onboarding of participants in blockchain projects.
Trust is a major growth driver in fintech. Applications need to be secure,
robustand available at all times or they risk losing credibility.
Prior to launching their KYC platform, Altcoinomy chose to test and
assess the security of its application and thus contacted the CYSEC LAB
CYSEC security engineers performed a web-application penetration testing on the KYC platform within the staging environment.
Reconnaissance activities to understand the networking topology and functionality
Scan of KYC onboarding platform in order to find OWASP Top-10 critical web application vulnerabilities
Attack simulation of the discovered vulnerabilities, leveraging custom scripts, exploits and a dedicated toolkit
Client report on vulnerabilities discovered, vulnerabilities confirmed, and remediation recommendations
Validation of newly implemented controls to eliminate the vulnerabilities
CYSEC successfully identified security issues in the KYC platform and confirmed their remediation, thus eliminating the risks before the market launch.