BlackBerry Penetration Testing
The best defense is a good offense
See how threat actors could attack your network using real-world scenarios. The BlackBerry® Penetration Testing team can do everything from regulatory penetration testing through custom developed adversary simulation to objective-based pen testing.
Know your Vulnerabilities and Risks
BlackBerry utilizes proprietary tools and methods to show how a Threat Actor can access to your environment. For each engagement we provide a custom, tailored approach utilizing the latest tactics, techniques and procedures that we have observed attackers using in the wild.
The BlackBerry Penetration Testing team has spent decades protecting the most critical systems, networks and applications in the world. Let us help protect your environment.
- Internal Penetration Testing Assessments
- Web Application Penetration Assessments
- Wireless Penetration Testing Assessment
While most networks are reasonably well-protected externally, they are not as well defended internally. As a result, they can be easily compromised once an attacker is able to gain a foothold. These attacks have the potential to be more devastating because insiders already have knowledge of what is important within a network and where it’s located – something external attackers don’t usually know from the start.
In an Internal Penetration Assessment, the “attacker” either has some sort of authorized access, or is starting from a point within the internal network. The results typically demonstrate what assets might be exposed to an unauthorized user who has network-level access to your corporate IT environment. The assessment can also help identify the impact of poor access controls and mitigate the impact of a malicious or disgruntled employee.
Web Application Penetration Assessments
Wireless Penetration Testing Assessment
Many organizations use wireless (Wi-Fi) networks to enable mobile devices to access the Internet. While these networks provide many benefits, an unprotected network can result in unauthorized use and potential security risks. Improperly architected networks can place attackers directly on your internal networks to access sensitive information, view the contents of transmissions, and infect computers. Unauthorized users may also send spam, spyware, or viruses to others from within your network.
A Wireless Penetration Assessment from BlackBerry Security Services is a critical step towards realizing the benefits of a wireless network. Our experts will help your organization prepare for business-critical mobility by evaluating your current environment, identifying areas of risk, and providing a roadmap detailing opportunities for improvement.
-
Internal Penetration Testing Assessments
While most networks are reasonably well-protected externally, they are not as well defended internally. As a result, they can be easily compromised once an attacker is able to gain a foothold. These attacks have the potential to be more devastating because insiders already have knowledge of what is important within a network and where it’s located – something external attackers don’t usually know from the start.
In an Internal Penetration Assessment, the “attacker” either has some sort of authorized access, or is starting from a point within the internal network. The results typically demonstrate what assets might be exposed to an unauthorized user who has network-level access to your corporate IT environment. The assessment can also help identify the impact of poor access controls and mitigate the impact of a malicious or disgruntled employee.
-
Web Application Penetration Assessments
Web applications play an important role in today’s businesses, but are also vulnerable to security and compliance risks by increasing the attack surface. A compromised app can result in stolen session IDs, account information theft, data breaches, and malicious code being implanted on websites. A Web Application Penetration Assessment from BlackBerry® Security Services allows organizations to test the security state of their applications, whether developed in-house or by third parties. The assessment can help organizations identify and correct vulnerabilities to protect from harmful attacks, and should be used as part of an ongoing strategy to support the organization’s software development lifecycle. -
Wireless Penetration Testing Assessment
Many organizations use wireless (Wi-Fi) networks to enable mobile devices to access the Internet. While these networks provide many benefits, an unprotected network can result in unauthorized use and potential security risks. Improperly architected networks can place attackers directly on your internal networks to access sensitive information, view the contents of transmissions, and infect computers. Unauthorized users may also send spam, spyware, or viruses to others from within your network.
A Wireless Penetration Assessment from BlackBerry Security Services is a critical step towards realizing the benefits of a wireless network. Our experts will help your organization prepare for business-critical mobility by evaluating your current environment, identifying areas of risk, and providing a roadmap detailing opportunities for improvement.
- External Penetration Testing
- Mobile Application Testing
External Penetration Testing
Internet accessibility is becoming more and more critical for today’s modern businesses. No matter what your vertical, you are likely utilizing external connectivity to further your business or organization goals. With that connectivity comes risk, as external attackers can utilize it to gain unauthorized access to your environment.
An External Penetration engagement from BlackBerry will help you to determine what access a motivated and skilled external attacker can gain into your environment. Our team starts with automated reconnaissance and scanning and then moves to skilled manual testing of your Internet Points of Presence in order to help you reduce your cyber risk.
Our team of skilled experts can perform many kinds of external testing from the basic regulatory required testing all the way through customized attacker simulation.
Mobile Application Testing
A mobile application penetration test aims to review an entire mobile application for security vulnerabilities and latest risks. We assess mobile applications using standards such as the OWASP Mobile Top 10 and the SANS Top 25 list in order to identify any weaknesses that could allow an attacker to compromise the application, the data it interacts with, its users or the hosting environment.
Mobile application security testing should be part of any organization’s risk assessment phase prior to launching live mobile applications or services. We take mobile application security testing to the highest level, ensuring that a Customer can release their mobile application, knowing it has been extensively scrutinized by industry leaders.
We can also provide scheduled monthly, quarterly, or yearly mobile application penetration testing services to a Customer to ensure their mobile presence is secure on an ongoing basis.
-
External Penetration Testing
Internet accessibility is becoming more and more critical for today’s modern businesses. No matter what your vertical, you are likely utilizing external connectivity to further your business or organization goals. With that connectivity comes risk, as external attackers can utilize it to gain unauthorized access to your environment.
An External Penetration engagement from BlackBerry will help you to determine what access a motivated and skilled external attacker can gain into your environment. Our team starts with automated reconnaissance and scanning and then moves to skilled manual testing of your Internet Points of Presence in order to help you reduce your cyber risk.
Our team of skilled experts can perform many kinds of external testing from the basic regulatory required testing all the way through customized attacker simulation.
-
Mobile Application Testing
A mobile application penetration test aims to review an entire mobile application for security vulnerabilities and latest risks. We assess mobile applications using standards such as the OWASP Mobile Top 10 and the SANS Top 25 list in order to identify any weaknesses that could allow an attacker to compromise the application, the data it interacts with, its users or the hosting environment.
Mobile application security testing should be part of any organization’s risk assessment phase prior to launching live mobile applications or services. We take mobile application security testing to the highest level, ensuring that a Customer can release their mobile application, knowing it has been extensively scrutinized by industry leaders.
We can also provide scheduled monthly, quarterly, or yearly mobile application penetration testing services to a Customer to ensure their mobile presence is secure on an ongoing basis.