In-depth penetration testing for a specialised Lithuanian bank 

The Bank of Lithuania closely monitors financial institutions to ensure the safety and soundness of the banking system. This helps protect depositors and investors and promotes financial stability in the country. 

The Bank of Lithuania requires financial institutions to undergo annual ICT risk and security assessments, including penetration testing, as part of this monitoring and continuous security improvement.  

This case study showcases the successful partnership between GENERAL FINANCING BANKAS (further – GFB) and Baltic Amadeus, where we provided penetration testing to identify areas of security improvement for GFB. 

Situation

GENERAL FINANCING BANKAS is a Lithuanian bank that offers a variety of financial products and services, such as savings accounts, consumer loans and term deposits.  

Moreover, GFB has a network of branches throughout Lithuania. The bank is committed to providing its customers with fast, efficient, and, most importantly, safe services. Therefore, GFB performs security assessments to ensure digital protection every year.  

GFB looked for an IT partner with a team of certified cyber security experts and proven penetration testing expertise. Thus, Baltic Amadeus has proposed IT consulting and penetration testing services to evaluate GFB’s ICT infrastructure and system security and to provide recommendations for improving security. 

Desktop-GFbankas01-3-e1699960164195
Desktop-GFbankas02-e1699961135427

Solution

During the project, our team conducted multiple authorised and unauthorised penetration tests of the client’s information systems and infrastructure. That included penetration testing of the information system’s internal server subnet, external penetration testing, and cloud security assessment.   

Moreover, we executed frontend and backend vulnerability assessment, API penetration testing with authorised user access, evaluation of cloud environment configuration, security checks of internal equipment, and vulnerability assessment of external assets.  

Lastly, Baltic Amadeus presented a comprehensive report to the GFB team. The report included an explanation of all identified areas of improvement for remedial action and an in-depth technical review with misconfigurations, vulnerabilities, risks, and a description of vulnerability exploitation scenarios. Additionally, the security assessment helped the client to adhere to regulatory compliance and security standards. 

Added value

The security assessment gave GFB insights into potential risks to its systems and data from a hacker’s viewpoint. It also strengthened the prevention of security incidents and financial losses caused by them. 

Also, the report enabled the client’s team to clearly understand their cyber security situation and take steps to improve their security posture.  

Top-quality penetration test was executed by certified and highly skilled ethical hackers who hold CEH, CISA, CISSP, CDPSE, OSCP, CREST CRT and ITIL certifications. In addition, the Baltic Amadeus team continues to help to ensure GFB’s cyber security as a technology partner. 

Desktop-GFbankas03-e1699961162998

Other projects

Automated reporting and billing operations for the US transportation company

Clever Transco LLC

Azure-based solution that cut infrastructure costs by over 4 times

ProMark

Data/API Hub solution for the international ferry service provider

TT-Line

Security assessment and InfoSec training for a global media company 

Internews

Infrastructure and data migration assessment for agricultural retail provider

Lytagra

Upgraded analysis platform boosted paid user base by 43%

Börsdata

Mobile app for the fastest-growing payment solutions provider in Lithuania

ConnectPay

Mobile app development for the largest insurance company in the Baltics

Lietuvos Draudimas

Boosted sales performance for the leading digital services company in the Baltics

Bitė

Highly rated mobile app for Baltic digital services company

Bitė

Progress OpenEdge solution for the US medical billing and management service provider 

Professional Billing, Inc.

Efficiency-driven ordering and billing system for large-scale military training

WilNor Governmental Services AS

High-performing eCommerce platform for one of the largest pharmacy providers in the Baltics 

EUROAPOTHECA

PSD2-based mobile banking solution for financial institutions

LCCU

Fully automated and scalable leasing solution for DNB Bank

DNB BANK

Ensured IT security & GDPR compliance for the international web hosting provider 

Hostinger

Convenient daily banking solution for credit unions  

KREDA

Mobile banking app for DNB bank

DNB bank

Performance monitoring solution for the global shipping company

Shippersys

Custom Business Intelligence solution for a global maritime company

Shippersys

Crisis management system for Norway’s educational institutions 

Akershus County

eCommerce platform for the global maritime Enterprise Asset Management provider

Star Information Systems

Web and mobile applications for preschools to ensure children’s safety

FamWeek

Fully upgraded communication platform for the Norwegian telecoms company

SIMCOM AS

eCommerce reservation platform for the Norwegian Aviation Museum

Norwegian Aviation Museum

Data visualisation solution that highly increased business productivity 

UNIPARK

Get a free quote!

We will be glad to answer all your questions. Contact us and get a free quote in 24 hours. CONTACT US >
Cookies
To ensure the operations of the services, our website uses cookies. By clicking AGREE WITH EVERYTHING, you agree to the cookies being saved. When you close this window, only mandatory cookies that are not subject to consent will be saved. More information can be found in the Privacy Policy
Cookie settings Agree with everything
Cookies
Select which cookies to accept. For more information about cookies, please check our Privacy Policy
Save Agree with everything