Categories
General

Vulnerability Assessment & Penetration Testing (VAPT): 2021

Vulnerability Assessment & Penetration Testing (VAPT): 2021

General

VAPT

In today’s world, every business is having an online presence, or it is connected to the internet. In today’s world, Cybersecurity is a priority, and businesses should not take it for granted.Threat actors are everywhere and they are always on a watch for loopholes and exploit them before anyone else. They are already aware of general and basic vulnerabilities and will find them in seconds. So before they find those vulnerabilities businesses should find them and resolve them to secure their assets!

Vulnerability Assessment & Penetration Testing comes into picture!

What is Vulnerability Assessment and Penetration Testing?

Vulnerability Assessment and Penetration Testing aka VAPT is a process that is utilized to identify different sorts of vulnerabilities in an organization or a program. 

VA (Vulnerability Assessment) It is about finding as many vulnerabilities as possible in a target’s defined scope, and , PT (Penetration Testing) is the process of attempting to exploit these vulnerabilities which were discovered in VA. 

A very crucial step before one goes for a VAPT is choosing the right third party vendor because you don’t need to have the reports filled only with Jquery xss and not really the critical Vulnerabilities, But you have landed to the right place this time.

Why do I go for VAPT?
  • Any business who wants to get their assets checked for vulnerabilities and potential exploitations for them should undergo VAPT.
  • Developers cannot look for security vulnerabilities if they are not skilled at that, Businesses need a third party company for that.
  • Any application before production release should go for a VAPT.
  • VAPT reports are helpful in case of a full Threat Hunting.
Why choose Bluefire Redteam?
  • Our process for the entire VAPT cycle is very streamlined and it has various layers to it that we won’t miss a vulnerability.
  • Our associates not only focus only on the red areas but we also cover the areas where most businesses fall vulnerable.
  • Our research oriented team is well capable in hunting that in 9/10 instances we discover >= CVSS 8.5 Vulnerabilities more!
  • As our process is well defined and tested almost in every engagement, We are much cost-effective!
  • We deliver you detailed reports for your developers as well as for any C-level person in your organisation.
  • Our consultants will be there for you anytime for helping you in taking the right further steps.
Why is VAPT important and what are its Pros?
  • Most importantly to keep the data secure.
  • To keep secure the monetary and data while moving it between the networks.
  • It will help you to understand the vulnerabilities which can be the baby step of a major cyberattack.
  • Protects your business from data loss and unauthorised access
  • To discover loopholes inside the framework.
  • To execute an effective security policy in the company.
  • It will help you in shielding your information from outside and inside threats.
  • VAPT reports are crucial for Threat Huntings too!
Cost of a VAPT?

Cost of an engagement depends on various factors as, What all web, apps , network ranges you wanted to get tested for and much more, But getting a VAPT by spending some money is better than spending millions of dollars after a breach!

Tags :

breach, Cyber attacks, cyber incident, Cybersecurity, data breach, data theft, hacking, pentesting

Share This :
Categories
breaches

Domino’s India Data Breach 2021

Domino’s India Data Breach 2021

breaches

Dominos Breach

Domino’s is probably the largest pizza delivery company in India which is owned by Jubilant FoodWorks having almost 1400 branches all over India and 18,200 outlets all over the world.

On 16th April 2021, a co-founder of an Israel-based cyber crimes intelligence company found that some hackers had claimed in a post to have more than 13TB of data from Domino’s India which included internal files of 250 employees from IT, Legal, Finance, Marketing, Operations, data of 18 crore orders including order details (name, phone number, email, delivery address with precise latitudinal and longitudinal co-ordinates, credit card details, date and time of orders) from 2015 to 2021.

Hackers had demanded 10BTC, around $550,000 (approx. ₹4 crores) for this database. The hackers also mentioned that they were planning to build a search portal to enable querying the data. 

Request a free consultation for your business

Don’t take your cyber security for granted!

 

Notably, the hackers were ready to pay $1000 to someone who could help them create the search engine. Since nobody responded to hackers’ demand, they put it up publicly on the dark web so that anyone can access it from a search portal. One only needs to enter the mobile number or email address on the search portal and all the information connected to it will be displayed. For now, the credit card details of the people have not been published online. But the hackers claim that they have more than 1 million credit card details and they’ll publicly publish it soon. 

Although Domino’s India confirms the data breach but refuses the claim over the credit card details of customers that the hackers threatened to publish by saying, “No data pertaining to financial information of any person was accessed and the incident has not resulted in any operational or business impact. As a policy we do not store financial details or credit card data of our customers, thus no information has been compromised.” Who is to be trusted?

According to the sources, the data breach took place on 24th March 2021. The question of the hour is how does the data being published on the internet affects you? This data can be used to scam someone easily. Several scams are often seen that are termed as Phishing, Smishing, Vishing and e-mail scams where the fraudster uses the personal information to fool a user to gain the access over the bank accounts.

Now the question is what can be done to protect the data on individual basis? Following are the few steps which can be implemented to protect the data.

  1. Try to minimise online data.
  2. Try not to use same passwords on multiple websites. Use complex passwords (combination of alphabets, numbers and special characters) or use a password manager if possible. Change your passwords quarterly.
  3. Do not save the credit card details on payment gateways.
  4. Use two-factor authentication when possible. 
  5. Use a VPN service to safeguard your location data.

To check if any of your personal data has leaked in any of the breaches, it is recommended to visit have I been pwned! , Where a user needs to input the email ID or phone number to check if any of the user’s data has been compromised earlier.

 

Tags :

breach, Cyber attacks, cyber incident, Cybersecurity, data breach

Share This :
Categories
breaches

Cybersecurity amidst Covid-19

Cybersecurity amidst Covid-19

breaches

cybersecurity amidst covid-19

Ever since the pandemic began, Marriott suffered a data breach affecting 5.2 million customers, and a ransomware attack forced Honda to shut down global operations. 2020 will be remembered as an year of a pandemic of global health crisis and cybersecurity as well.

Soon after the COVID-19 pandemic was announced, World Health Organization(WHO) has seen a dramatic increase in the number of cyberattacks directed at its staff, and email scams targeting the public at large.

There are numerous cyber attacks which came into light during this pandemic, Below are a few of them:

  • Marriott released a statement disclosing the information of 5.2 million guests that was accessed using the login credentials of two employees at a franchise property.
  • Twitter Bitcoin scam: Through a social engineering attack, later confirmed by Twitter to be phone phishing, the attackers stole employees’ credentials and gained access to the company’s internal management systems.
  • FireEye and SolarWinds supply chain attack.
  • 500,000 user accounts of zoom were on sale on the dark web.
  • Magellan Health: 8 Magellan Health entities and approximately 365,000 patients were impacted by the attack.
  • Finastra, which provides software solutions to worldwide financial institutions, including 90 of the top 100 banks globally, was the victim of a ransomware attack that disrupted operations and caused it to temporarily disconnect affected servers from the internet.

Now some questions to be answered by organizations, Is your organization’s network protection strategy as successful as it ought to be in the midst of these wild occasions? Furthermore, in case you’re not an employee but rather the owner of a private venture – typically someone with much less sophisticated cybersecurity protection – how does your online security is reliable?

The answer could be to accept the ongoing scenario learn lessons and get ready for what is coming. Cyber attacks will keep on occurring in future and a bitter truth is that they will become more sophisticated and critical.

Fireeye in their “Mandiant Security Effectiveness Report” mentioned that:

53% ATTACKS INFILTRATE UNNOTICED, 68% OF RANSOMWARE ATTACKS UNNOTICED, 91% OF ATTACKS DID NOT GENERATE AN ALERT

 

Organizations, business owners, employees, or individuals need to be aware about data security and privacy. With the surge in wide range of threats, companies should begin by reviewing the basics. Everyone should learn and understand social engineering attacks as humans are the weakest link in cyber security which has no complete patch. Organizations should conduct cybersecurity trainings for their employees on regular basis. Atleast employees should be able to distinguish between malicious and legitimate emails or calls and report them if they seem a bit suspicious, Proper access controls should be put in place too!

Tags :

covid-19, Cyber attacks, cyber incident, Cybersecurity, data breach, data theft

Share This :
Categories
breaches

SITA Breach: Air India Hack

SITA Breach: Air India Hack

breaches

Air india hack

Breaches are not new!, Many companies are potential targets of threat actors and, The same happened with SITA, Which included data breach of many airlines around the globe including Air India, The massive data leak was caused by a “sophisticated cyberattack” on Air India’s passenger service system provider SITA (Société Internationale de Télécommunications Aéronautiques) SITA is based out of Geneva in Switzerland.

On march 4, SITA rolled out a notification on their website about a security incident, In that they confirmed a cyber attack, And highlighted that:

SITA confirms that it was the victim of a cyber-attack, leading to a data security incident involving certain passenger data that was stored on SITA Passenger Service System (US) Inc. servers.

Air India then released a notification to the passengers, confirming the breach by writing

This incident affected around 4,500,000 data subjects in the world.

Request a free consultation for your business

Don’t take your cyber security for granted!

 

Now the question is, Do they really lack in their cyber security assessments? Or the way they operate their cyber security is not up to the mark? What I personally think is cyber incidents can happen any time, You never know who is targeting you, You need to be proactive! Also what if you are already hacked and you don’t know? Right assessments are to be performed! , Also in our personal experience, We found enterprises only relying on tools to figure out the right cyber security for them, Remember a tool with the right security guy is helpful in many situations!

Last thoughts:

I hope we learn lessons from such incidents and iteratively look for a better security posture each time.

Tags :

Cyber attacks, cyber incident, Cybersecurity, data breach, data theft, hacking

Share This :