Attackers have been using OSINT techniques against companies successfully to identify and exploit information assets.
Unfortunately, conventional security assessment and guidance doesn’t address these exposures very well. This talk delves into what are some of the techniques Fintech companies should be using to build a complete picture of its Internet exposed assets. Once this big picture is available, they can figure out ways of staying secure.
Based on the techniques described, we share some of our findings. We will present aggregates around the various security issues discovered and general mitigations for those as checklists that can be followed..