ethicalhacker.ro

FinTech SaaS — Cloud Attack Simulation

Financial Services (SaaS)Multi-tenant SaaS, AWS, CI/CD2 weeks2024-06

Identified and closed critical CI/CD token exposure risk and IAM privilege escalation paths in a multi-tenant AWS SaaS platform.

FinTech SaaS — Cloud Attack Simulation (Anonymized)

Industry: Financial Services (SaaS)
Scope: Multi-tenant SaaS, AWS, CI/CD
Duration: 2 weeks

Methods

Assume-breach in staging

IAM privilege escalation checks

OIDC misconfiguration hunt

Supply-chain dependency audit

Key Findings

Critical: CI token exposed build cache → prod artifact signing risk

High: Mis-scoped IAM role allowed secrets read

Medium: SSRF through image proxy (blocked by IMDSv2 after fix)

Outcomes (Metrics)

Reduced lateral-movement paths: 7 → 1

Implemented workload identity & short-lived creds

Signed releases w/ provenance (SLSA level improvements)

Download Redacted Report Sample Request Penetration Test Quote

FinTech SaaS — Cloud Attack Simulation | ethicalhacker.ro