About the client
Our client is a French multinational investment bank and financial services company.
- Bank used to have different invoice formats for its customers
- The core application had file uploading functionality
- Challenge was to identify any malicious file or content upload
- Our Security team had performed security testing on the web application
- The vulnerabilities like privilege escalations via Insecure Direct Object Reference was possible and any user of the application was allowed to perform financial transactions.
- We provided recommendations to mitigate the vulnerabilities.
Executive Dashboard Reports on Critical issues
Effective collaboration between the Business & Delivery Team
Reduced Risks associated with the Application by providing On-time Remediation
Consultative Advisory on Policy Compliance & Process improvement.