In-depth penetration testing for a specialised Lithuanian bank

The Bank of Lithuania closely monitors financial institutions to ensure the safety and soundness of the banking system. This helps protect depositors and investors and promotes financial stability in the country.

The Bank of Lithuania requires financial institutions to undergo annual ICT risk and security assessments, including penetration testing, as part of this monitoring and continuous security improvement.

This case study showcases the successful partnership between GENERAL FINANCING BANKAS (further – GFB) and Baltic Amadeus, where we provided penetration testing to identify areas of security improvement for GFB.

Situation

GENERAL FINANCING BANKAS is a Lithuanian bank that offers a variety of financial products and services, such as savings accounts, consumer loans and term deposits.

Moreover, GFB has a network of branches throughout Lithuania. The bank is committed to providing its customers with fast, efficient, and, most importantly, safe services. Therefore, GFB performs security assessments to ensure digital protection every year.

GFB looked for an IT partner with a team of certified cyber security experts and proven penetration testing expertise. Thus, Baltic Amadeus has proposed IT consulting and penetration testing services to evaluate GFB’s ICT infrastructure and system security and to provide recommendations for improving security.

Desktop-GFbankas01-3-e1699960164195
Desktop-GFbankas02-e1699961135427

Solution

During the project, our team conducted multiple authorised and unauthorised penetration tests of the client’s information systems and infrastructure. That included penetration testing of the information system’s internal server subnet, external penetration testing, and cloud security assessment.

Moreover, we executed frontend and backend vulnerability assessment, API penetration testing with authorised user access, evaluation of cloud environment configuration, security checks of internal equipment, and vulnerability assessment of external assets.

Lastly, Baltic Amadeus presented a comprehensive report to the GFB team. The report included an explanation of all identified areas of improvement for remedial action and an in-depth technical review with misconfigurations, vulnerabilities, risks, and a description of vulnerability exploitation scenarios. Additionally, the security assessment helped the client to adhere to regulatory compliance and security standards.

Added value

The security assessment gave GFB insights into potential risks to its systems and data from a hacker’s viewpoint. It also strengthened the prevention of security incidents and financial losses caused by them.

Also, the report enabled the client’s team to clearly understand their cyber security situation and take steps to improve their security posture.

Top-quality penetration test was executed by certified and highly skilled ethical hackers who hold CEH, CISA, CISSP, CDPSE, OSCP, CREST CRT and ITIL certifications. In addition, the Baltic Amadeus team continues to help to ensure GFB’s cyber security as a technology partner.

Desktop-GFbankas03-e1699961162998

Let’s work together

Want to discuss potential opportunities? Pick the most suitable way to contact us.

Book a call

+370 5 2 780 400
info@ba.lt

     privacy policy

    Other projects

    Budget management system for the sustainability solution provider

    Vesta Consulting

    Azure AI vision solution for the global tobacco company

    JTI Lithuania

    AWS migration for online business payment provider

    OPAY

    User experience services for a Norwegian communication software provider

    Omnicus

    Power BI solution for the global tobacco provider

    JTI Lithuania

    ESG analysis for the international sustainability solution provider

    Vesta Consulting

    Reliable marketplace platform for used car trading

    Data warehouse modernisation for the international tobacco company

    JTI Lithuania

    Unified IT systems for the debt company

    Drupal-based CMS for a leading tobacco company worldwide

    JTI Lithuania

    Solar energy trading solution for the international energy company

    Progress OpenEdge development and system testing services for a Swiss company

    Optiwork

    AWS-based automated reporting and billing solution for the US transportation company

    Clever Transco LLC

    Azure-based solution that cut infrastructure costs by over 4 times

    ProMark

    Data/API Hub solution for the international ferry service provider

    TT-Line

    Security assessment and InfoSec training for a global media company

    Internews

    Infrastructure and data migration assessment for agricultural retail provider

    Lytagra

    Upgraded analysis platform boosted paid user base by 43%

    Börsdata

    Mobile app for the fastest-growing payment solutions provider in Lithuania

    ConnectPay

    Mobile app development for the largest insurance company in the Baltics

    Lietuvos Draudimas

    Boosted sales performance for the leading digital services company in the Baltics

    Bitė

    Highly rated mobile app for Baltic digital services company

    Bitė

    Progress OpenEdge solution for the US medical billing and management service provider

    Professional Billing, Inc.

    Efficiency-driven ordering and billing system for large-scale military training

    WilNor Governmental Services AS

    High-performing eCommerce platform for one of the largest pharmacy providers in the Baltics

    EUROAPOTHECA

    AWS-based mobile banking solution for the financial institution

    LCCU

    Fully automated and scalable leasing solution for DNB Bank

    DNB BANK

    Ensured IT security & GDPR compliance for the international web hosting provider

    Hostinger

    Convenient daily banking solution for credit unions

    KREDA

    Mobile banking app for DNB bank

    DNB bank

    Performance monitoring solution for the global shipping company

    Shippersys

    Custom Business Intelligence solution for a global maritime company

    Shippersys

    Crisis management system for Norway’s educational institutions

    Akershus County

    eCommerce platform for the global maritime Enterprise Asset Management provider

    Star Information Systems

    Innovative eCommerce solution that enhanced customer experience for electricity consumers

    UAB Technologijų ir inovacijų centras

    Web and mobile applications for preschools to ensure children’s safety

    FamWeek

    Fully upgraded communication platform for the Norwegian telecoms company

    SIMCOM AS

    eCommerce reservation platform for the Norwegian Aviation Museum

    Norwegian Aviation Museum

    Data visualisation solution that highly increased business productivity

    UNIPARK

    Get a free quote!

    We will be glad to answer all your questions. Contact us and get a free quote in 24 hours. CONTACT US >