|Customer: A private IT security software company||Profile: The client specializes in Data and IT Security, IT Compliance, Information Governance, IT Risk Assessment, Insider Threat Detection, User Behavior Analysis, Change Auditing, and Content Services.|
Services: Vulnerability Assessment
|Size: 201-500 employees|
|Region: Irvine, California|
The client empowers information security and governance professionals to reclaim control over sensitive, regulated, and business-critical data, regardless of where it resides.
While the client could always successfully identify and resolve any security loopholes, Open Bug Bounty Researcher found a security vulnerability affecting the website and its users. They identified XSS (Cross-Site Scripting) and other vulnerabilities and disclosed information related to XSS vulnerability on Open Bug Bounty site.
To get detailed insight into the security gaps identified, the client was looking to partner with a security consulting firm that could look into the gaps and provide a complete vulnerability report. The client also wanted the firm to provide a list of preventive/corrective action items for their infected website.
Solution and Approach
Since known vulnerabilities have been identified, the client is also able to strengthen its security posture and prevent future attacks.
“Thank you for your great job for identifying vulnerabilities from our web application. We are going to research and implement it.”