Security Hubs Logo

Case Studies

Fintech Case Study

Securing Competitive Advantage Through an Offensive AppSec Pentesting



- Date Executed

March, 2021

- Description

Security Hubs was engaged in executing an all-around Pentesting targeting a Fintech application.

- The Organization Industry

Financial Services | 1500+ employees | EU - US represented

- About the Target

The Client is a leading company in the Fintech industry. With an extensive portfolio of clients relying upon its current infrastructure and web interfaces for fast payments processing, the Client's appetite for validating its current cybersecurity stance was a top priority above anything else.

- Services Provided

AppSec (Web / API / Mobile) | Infrastructure | OSINT

- The Challange

"The Client had an active bug bounty program, accessing the top security researchers globally. A bug bounty program means that numerous eyes are always on the hunt, seeking vulnerabilities. This was a challenging non-traditional pentest, and we had to approach this from an entirely new perspective." - Jon Lu, Snr. Security Engineer at Security Hubs.

- The Result

The Client deployed, retested, and had the fixes confirmed in less than 4 hours vs. 5 days when he used similar consultancies companies. Also, the Client noticed a 56% cost reduction engaging Security Hubs services.

Get in touch
Healthcare Case Study

Validating an Ongoing Security Program Results



- Date Executed

January, 2021

- Description

Security Hubs was engaged in executing a regular AppSec Pentesting targeting a Healthcare company.

- The Organization Industry

Healthcare | 5000+ employees | ASIA - PACIFIC represented

- About the Target

As part of an expansion strategy, the Client needed to ensure that all the business components were tested regularly and met the expected security standards. With all these in hands, protecting sensitive data and closing security gaps was an overriding concern.

- Services Provided

AppSec (Web / API) | Infrastructure

- The Challange

The Company is acting as an Information Exchange hub dealing with significant healthcare personal information. The company's platform connects various suppliers and medical services vendors, each of them consuming numerous API endpoints.

- The Result

The Company paid 43% less for their annual penetration testing effort, fixing 108 Medium / High / Critical impact findings.

Get in touch

Ready to get started?

Get in touch