One of the leading payment service provider in APAC engaged us to secure their mobile payment devices through secure code review and remediation advisories.
Goal of this engagement was to assess the device application source code for security flaws and validate that secure coding practices has been incorporated in the source code development life cycle. Also to assess the source code with Industry best practices – OWASP.
As part of the engagement, we covered OWASP IOT Top 10 Vulnerabilities review in the device application. This application was written in C and C++ and device firmware was based on Linux Kernel.
You can download the case-study to know more about the key security concerns we unearthed ...