Latest News
- Warnings made of vulnerability in the 3Com Intelligent Management Centre that could result in lack of consumer control
- Why have Adobe hacks become more popular lately? Are there any special measures I should take to protect against them?
- Why is restricting access to cardholder data the biggest challenge of PCI DSS compliance?
- PCI compliance may be bitter pill to swallow, but it's for merchants' own good
- PCI DSS regulations should not be written off as being unsuitable, as an understanding of the terms and options are often ignored
Click here to see more news.
Vulnerabilities
Click here to see more of ProCheckUp's published vulnerabilities.
Stolen Laptop Test
Nowadays it is common for companies to provide laptops to their employees in order to allow them to work remotely. However, provided an employee's laptop gets stolen, it might be possible for the criminal who stole it to gain remote access to the target company’s information assets.
During this test, ProCheckUp will be provided with a typical employee laptop. It is important to emphasize that such laptop must have been used in the past by an employee to access the company resources.
ProCheckUp will analyze data saved and cashed on the file system of the laptop and attempt to gain remote access to customer’s resources by exploiting insecure configuration of the laptop which can lead to extracting sensitive information stored on it.
We recently performed a stolen laptop test for a large clearing house where security was being reviewed across the board, we found that the laptop allowed malicious user access and other potentially critical issues. Read the full case study here.
Contact us to discuss your individual penetration testing needs.
Blackberry Test
A significant number of companies have chosen to provide Blackberry handsets to their employees in order to increase productivity and business communications. However, provided an employee’s Blackberry handset gets stolen or an employee is tricked to open a malicious email attachment on his handset, it might be possible for the attacker to gain remote access to the target company’s information assets. This is due to the trust relationship between Blackberry handsets and the remote internal network which is accessed via the Internet.
During this test, ProCheckUp will test a typical employee Blackberry handset and the Blackberry Enterprise Server (BES) which such handset communicates with. It is important to emphasize that such handset should be configured using similar settings as any other employee's handset, in order to simulate a real-life attack.
ProCheckUp will analyse data saved and cashed on the file system of the handset and attempt to gain remote access to customer’s resources by exploiting insecure configuration of the handset or the Blackberry architecture.
Contact us to discuss your individual penetration testing needs.