FinTech SaaS — Cloud Attack Simulation (Anonymized)
Industry: Financial Services (SaaS)
Scope: Multi-tenant SaaS, AWS, CI/CD
Duration: 2 weeks
Methods
- Assume-breach in staging
- IAM privilege escalation checks
- OIDC misconfiguration hunt
- Supply-chain dependency audit
- Critical: CI token exposed build cache → prod artifact signing risk
- High: Mis-scoped IAM role allowed secrets read
- Medium: SSRF through image proxy (blocked by IMDSv2 after fix)
- Reduced lateral-movement paths: 7 → 1
- Implemented workload identity & short-lived creds
- Signed releases w/ provenance (SLSA level improvements)