Small Industries Development Bank of India (SIDBI) is the principal financial institution for the promotion, financing and development of Micro, Small and Medium Enterprises (MSME) and for co-ordination of functions of institutions engaged in similar activities.
To keep up with changing times SIDBI took a step towards digitalization, but was faced with several challenges. Being a critical banking organization, it was vulnerable to online threats, hackers, web attackers, etc.
SIDBI needed a very robust solution for its security issues since they had very crucial data on their website. Some of the common types of security threats to a website include SQL injection, an old and most common vulnerability which can attack any website. In this attack, the attacker injects a malicious statement or payload that controls a web application’s database server also known as Relational Database Management System (RDMS).
Database access and theft or corruption of personal or sensitive data was also another concern. Being into financial services the website consisted crucial information about the customers such as login details and passwords.
Denial of Service (DoS) is another type of attack where multiple compromised systems, which are often infected with a Trojan, are used to target a single system causing a Denial of Service (DoS) attack.
ESDS VTMScan (Security as a Service) was the perfect solution for SIDBI’s quandary. ESDS VTMScan has an extensive scanning package which examines different types of vulnerabilities and determines the security patches to be applied.
It offers end-to-end enterprise scanning and is comprehensive in nature, as against other solutions which offer few modules instead of a 360° solution for risk mitigation. It scans website for malware, XSS vulnerabilities and Trojan horses; and checks the website for issues with website code, server settings, mail spam, domain reputation and much more.
The switch to ESDS VTMScan proved beneficial for SIDBI. Virus and malware detection issues that were not picked up previously were identified and dealt with quickly. Today, ESDS VTMScan’s intelligent scanning helps SIDBI detect threats prior to an attack. It helps developers rectify issues before they aggravate and helped save overheads for the bank.
Auditing their website for security vulnerabilities has extensively helped SIDBI become proactive against all kinds of threats like malware, code injections, cross-site scripting attacks and many other types of threats their website was facing prior to implementing ESDS VTMScan.