Strengthening AWS cloud security: BLOXXON AG's success story in penetration testing

X

BLOXXON AG

Customer success stories
Strengthening AWS cloud security: BLOXXON AG's success story in penetration testing

The challenge

BLOXXON AG, a leading service provider for digital assets, pursues the goal of providing a modern and digital banking offering for German SMEs through its innovative approach. With licenses for crypto custody, investment brokerage and financial portfolio management, BLOXXON AG is a reliable partner for investment companies, asset managers and banks. As the security of the platform is a top priority, BLOXXON AG chose AWS as the technological foundation due to its extensive portfolio of more than 45 security-relevant services. To ensure the resilience of its platform, BLOXXON AG worked with Alice&Bob.Company to conduct thorough penetration testing to ensure that there were no exploitable vulnerabilities or security-related configuration errors.

Contact usBook an appointment

"Alice&Bob.Company's penetration tests confirmed our claim of implementing a very high level of security in our platform. Having this external validation is essential for proceeding with further cloud implementations. Based on our business requirements, A&B supported us with their expertise in a straightforward, very professional and fast way. We are looking forward to a long-term, fair partnership."

Didier Goepfert, Managing Director

Our solution

To obtain an independent overview of BLOXXON AG's existing AWS environment, Alice&Bob.Company conducted both blackbox and greybox penetration tests. Blackbox tests were performed to identify vulnerabilities without prior knowledge of the environment, while greybox tests partly used technical information provided by the customer, such as login credentials or architectural plans.

Alice&Bob.Company focused on detecting and exploiting typical standard issues, including application and security misconfigurations. In addition, their experience as an experienced AWS service provider allowed them to identify AWS-specific security issues such as EC2 misconfigurations, S3 bucket permissions and IAM-related privilege escalations. By conducting comprehensive testing that included both traditional and cloud-specific vulnerabilities, Alice&Bob.Company ensured a solid assessment of BLOXXON AG's security posture.

Cloud technologies used

- KMS (Key Management Service): Secure and scalable key management for the protection of sensitive information and access control.

- EC2 (Elastic Compute Cloud): Scalable virtual servers in the cloud that offer flexibility and reliable computing power.

- S3 (Simple Storage Service): Scalable object storage for the secure storage and retrieval of data.

- VPCs (Virtual Private Clouds): Isolated virtual networks within AWS that provide control over network configuration and security.

- IAM (identity and access management): Central control and management of AWS resource access authorizations.

Amazon Elastic Compute Cloud (EC2)

Scalable virtual servers in the cloud.

Amazon Simple Storage Service (S3)

Object-based storage for any amount of data.

Amazon Virtual Private Cloud (VPC)

Isolated cloud resources within AWS.

AWS Identity and Access Management (IAM)

Manage user access and authorizations.

Results

After the penetration tests, BLOXXON AG received a prioritized list of results, including estimated efforts and criticality ratings. These results were presented and explained in detail in a special meeting to present the results. The tests confirmed the high level of the existing platform configuration and the robust security measures implemented by BLOXXON AG.

To eliminate the identified vulnerabilities and improve the cloud security configuration, BLOXXON AG worked closely with Alice&Bob.Company. Remediation measures and customizations were implemented, leveraging the expertise of both parties. BLOXXON AG's diligent efforts and Alice&Bob.Company's guidance ensured a quick and effective response to the identified security risks.

Our solutions

Discover our solutions and formats that support you in the areas of digitalization, innovation & cloud:
All solutions
Arrow to the rightArrow to the right

Grafana Cloud Platform

Real-time monitoring with Grafana

Grafana Implementation Consulting

Set up the Grafana Cloud platform

Managed Service for Grafana

Continuous management and expansion of the Grafana platform

OKTA Customer Identity Cloud (CIC)

Secure and seamless authentication of your customer platform

OKTA Customer Identity Implementation Consulting (CIC)

Customer identities in your digital product? We can help!

NIS2 for AWS Workshop

What does NIS2 mean for your AWS deployment?

AWS introduction for the public sector

Getting started with AWS for the public sector made easy!

AWS Account Management for the Public Sector

AWS Account Housekeeping as the basis for your digital foundation.

AWS Landing Zone Development for the public sector

Secure, scalable, well-architected multi-account AWS environments

AWS GenAI Consulting

Discover the future with generative artificial intelligence from AWS!

Alice&Bob.YOU - Your Digital Foundation

Accelerate innovation. Reduce complexity.

Backup & Disaster Recovery

Your data, safely stored!

Kubernetes Consulting

Efficient management of Kubernetes clusters

Penetration testing

We are your friendly hackers next door

Agile Threat Modeling Workshop

Identify threats in the development process at an early stage

AWS Well-Architected Review

6 pillars that support your AWS setup

AWS Security Assessment

How secure is your AWS deployment?

AWS Consulting

Get your Black Belt AWS Support!

GDPR compliance in the AWS Cloud

GDPR compliance in AWS. What works? What does not work?

AWS Web Application Firewall (WAF) Consulting

Protect your web application against attacks

AWS Control Tower Consulting

Scalable environments with integrated control and guidelines

Digital Foundation Workshop

Build your digital foundation with Alice&Bob.YOU

Cloud Migration Workshop

Use the speed and innovative power of the cloud!

Digital Foundation - Alice&Bob.YOU

Your Digital Foundation to get started right away

Backup and disaster recovery

Protect and quickly restore your data

OKTA Workforce Identity Cloud (WIC)

Efficient identity management for employees

AWS RDS Database Consulting

Our experts take your database to the next level

DDoS protection with AWS

We build your shield against DDoS attacks to keep you online

Security Champions Program

Strengthen your company's safety culture

Cloud Security Training

We help you to protect yourself

CI/CD Pipeline Building

Automate your deployments via CI/CD pipelines

Smart City Starter Package

Efficiently drive innovation with Alice&Bob.Company

Audit Preparation

Your solution for compliance challenges
Arrow to the right

AWS Housekeeping

Continuous improvement and increased efficiency of your cloud platform
Arrow to the right

AWS Cloud Security Assessment

Maximum security for your AWS environment
Arrow to the right
Questions?
We look forward to getting to know you!
Thank you - your message has been sent.
Unfortunately something went wrong when sending the form :(