In-depth penetration testing for a specialised Lithuanian bank
The Bank of Lithuania closely monitors financial institutions to ensure the safety and soundness of the banking system. This helps protect depositors and investors and promotes financial stability in the country.
The Bank of Lithuania requires financial institutions to undergo annual ICT risk and security assessments, including penetration testing, as part of this monitoring and continuous security improvement.
This case study showcases the successful partnership between GENERAL FINANCING BANKAS (further – GFB) and Baltic Amadeus, where we provided penetration testing to identify areas of security improvement for GFB.
GENERAL FINANCING BANKAS is a Lithuanian bank that offers a variety of financial products and services, such as savings accounts, consumer loans and term deposits.
Moreover, GFB has a network of branches throughout Lithuania. The bank is committed to providing its customers with fast, efficient, and, most importantly, safe services. Therefore, GFB performs security assessments to ensure digital protection every year.
GFB looked for an IT partner with a team of certified cyber security experts and proven penetration testing expertise. Thus, Baltic Amadeus has proposed IT consulting and penetration testing services to evaluate GFB’s ICT infrastructure and system security and to provide recommendations for improving security.
During the project, our team conducted multiple authorised and unauthorised penetration tests of the client’s information systems and infrastructure. That included penetration testing of the information system’s internal server subnet, external penetration testing, and cloud security assessment.
Moreover, we executed frontend and backend vulnerability assessment, API penetration testing with authorised user access, evaluation of cloud environment configuration, security checks of internal equipment, and vulnerability assessment of external assets.
Lastly, Baltic Amadeus presented a comprehensive report to the GFB team. The report included an explanation of all identified areas of improvement for remedial action and an in-depth technical review with misconfigurations, vulnerabilities, risks, and a description of vulnerability exploitation scenarios. Additionally, the security assessment helped the client to adhere to regulatory compliance and security standards.
The security assessment gave GFB insights into potential risks to its systems and data from a hacker’s viewpoint. It also strengthened the prevention of security incidents and financial losses caused by them.
Also, the report enabled the client’s team to clearly understand their cyber security situation and take steps to improve their security posture.
Top-quality penetration test was executed by certified and highly skilled ethical hackers who hold CEH, CISA, CISSP, CDPSE, OSCP, CREST CRT and ITIL certifications. In addition, the Baltic Amadeus team continues to help to ensure GFB’s cyber security as a technology partner.
We're really happy with the penetration testing services from Baltic Amadeus. Working with their team was easy, efficient and resulted in comprehensively improved security posture. Arranging testing activities was easy as the team has demonstrated excellence in every step.
Automated reporting and billing operations for the US transportation company
Clever Transco LLC
Azure-based solution that cut infrastructure costs by over 4 times
Data/API Hub solution for the international ferry service provider
Security assessment and InfoSec training for a global media company
Infrastructure and data migration assessment for agricultural retail provider
Upgraded analysis platform boosted paid user base by 43%
Mobile app for the fastest-growing payment solutions provider in Lithuania
Mobile app development for the largest insurance company in the Baltics
Boosted sales performance for the leading digital services company in the Baltics
Highly rated mobile app for Baltic digital services company
Progress OpenEdge solution for the US medical billing and management service provider
Professional Billing, Inc.
Efficiency-driven ordering and billing system for large-scale military training
WilNor Governmental Services AS
High-performing eCommerce platform for one of the largest pharmacy providers in the Baltics
PSD2-based mobile banking solution for financial institutions
Fully automated and scalable leasing solution for DNB Bank
Ensured IT security & GDPR compliance for the international web hosting provider
Convenient daily banking solution for credit unions
Mobile banking app for DNB bank
Performance monitoring solution for the global shipping company
Custom Business Intelligence solution for a global maritime company
Crisis management system for Norway’s educational institutions
eCommerce platform for the global maritime Enterprise Asset Management provider
Star Information Systems
Web and mobile applications for preschools to ensure children’s safety
Fully upgraded communication platform for the Norwegian telecoms company
eCommerce reservation platform for the Norwegian Aviation Museum
Norwegian Aviation Museum
Data visualisation solution that highly increased business productivity