Strengthening cybersecurity for a leading telecom service provider

Our customer wanted to expand the functionality of their telecom application with a fintech component and needed to ensure that it provides sufficient security for customer data. The company decided to conduct comprehensive security testing of the entire solution to identify any security vulnerabilities and ensure the safety of user personal data and financial transactions.

N-iX began by ensuring seamless coordination with the customer's security team to prevent service disruptions during testing. Our cybersecurity experts defined the areas to be tested and outlined the most effective testing methodologies.

Certain technological specifics of the client's application made the testing process more challenging. In particular, the application consisted of a shared front-end component and two distinct back-end components, each with its separate infrastructure and technologies. Also, the application did not support the installation of proxies. Therefore, we had to build a new version of the iOS application to overcome this challenge and intercept traffic during testing.

By conducting a thorough assessment and analysis of access handling, input handling, device storage, logic, and more, we have helped the client identify vulnerabilities within their mobile solution. As a result, we have prepared and executed a PoC exploit for the identified vulnerabilities and provided a security report.

The comprehensive cybersecurity assessment performed by N-iX has benefited the client in several significant ways:

• Identified and mitigated security risks before launching the new fintech service;
• Boosted the solution’s security to prevent unauthorized access and use;
• Eliminated the risks of financial and reputational damages caused by data breaches and other malicious cyber activities;
• Mitigated issues that could potentially lead to service disruptions or downtime.