Here's how we can help you
Known vulnerabilities in web applications are often an easy way into a company’s internal infrastructure. We test and review potential vulnerabilities that you didn’t know existed and make recommendations on how these should be fixed.
Infrastructure penetration testing involves looking for vulnerabilities in all components connected to the client environment, which includes switches, servers, printers, clients, routers, IoT and OT equipment.
We carry out tests of the company’s mobile devices as well as the networks and systems to which they are connected. In testing, our experts look for weaknesses as we bypass security checks and simulate real attack attempts.
Pentest by OT focuses on the systems and networks used to control and monitor industrial processes and critical infrastructure. These systems can include SCADA systems, PLCs, and other types of industrial control systems.
Our experts are certified and have extensive experience in forensic investigations and digital evidence collection. Using proven methods, we investigate and test various hardware that has been exposed to intrusions. After gathering evidence, we ensure that no back doors remain.
In social engineering tests, employees’ knowledge and abilities are put to the test. The human factor is a common reason why IT attacks often occur. Through phishing campaigns with emails, phone calls or attempted physical intrusions, we try to access sensitive information.
In social engineering tests, employees’ knowledge and abilities are put to the test. The human factor is a common reason why IT attacks often occur. Through phishing campaigns with emails, phone calls or attempted physical intrusions, we try to access sensitive information.
Client tests
A physical penetration tester is physically present at the client’s location and tries to gain access to the physical premises. After a successful breach, the physical penetration tester continues to compromise systems and networks, or collect other sensitive data.
Does your organization need external resources to train new and existing staff in IT security? Our experts have extensive experience in working with companies that have the highest security requirements. We adapt the training according to your wishes, so that the entire organization can achieve the security requirements that are set.
Do you suspect that you already have an ongoing breach in your systems? Don’t worry, our IT security consultants will help you take control of the situation. Contact us directly and we will help you find out what happened
Are you under attack right now?
Forensics and incident management
When something happens in your IT system, it is important to keep a cool head and act according to set protocol. Basalt’s experienced incident handlers make a collective assessment of alarms, indicators and incidents with a focus on IT security. We present a report, determine its severity level and then communicate according to an agreed process to the correct system. Basalt’s incident handlers have extensive experience in forensic investigations and have previously been part of various Computer Security Incident Response Teams (CSIRTs).
Do you suspect you are under attack right now? We can help you take control of the situation. Contact us directly and we will get back to you immediately.
Identify the weak point of the IT system
Penetration tests (pen test)
Basalt’s IT security experts help you identify IT system vulnerabilities and review IT security for your business based on your needs and requirements. Among other things, we help with penetration tests, vulnerability scans, evaluations of systems and recommendations on measures to increase security. Our consultants also check that the security level of your IT system is correct and adapted to your business according to laws and regulations.
Realistic attacks against your organization
Red team
In IT security, Red team is used as a method to measure organizations’ resilience and ability to handle digital and physical attack attempts. A Red team challenges systems, technology and employees through realistic attacks. Here, the organization’s detection and reaction capabilities are tested and attempts are made to access sensitive information. Since an attacker does not necessarily know exactly how to access the sensitive information, several different approaches are used.
Through as realistic attack attempts as possible, the organization’s ability is put to the test – for real.
Get help from certified IT security experts
Competent consultants
Our IT security consultants have several certifications in IT security. It is important for us to guarantee that we can do what we promise. Our consultants have extensive experience in working with customers who have the highest security requirements. We find vulnerabilities that others miss.
We value competence development and therefore participate annually in several IT security conferences where our employees can put their knowledge to the test, undergo training and learn about the latest in IT security. New threats are added all the time, therefore it is just as important that our consultants learn about new vulnerabilities, as it is that organizations regularly look for these in both the IT environment and IT systems.
A presentation by Fredrik Sandström
How to Hack ATMs
During the IT security conference SEC-T in September 2023, Fredrik Sandström, our senior consultant in IT security, gave a talk on how to go about penetration testing ATMs.
5 tips to protect your systems against an attack
Download our guide
Make it harder for an attacker to succeed in their attack. Download our free guide with 5 concrete tips on how to protect your business against attacks.
-
Get tips and inspiration from Basalt
Subscribe to our newsletter -
Stay one step ahead.
Let Basalt be responsible for your operational protection.
Contact us and we will guide you right!
Search the page
Search for pages or news
Cookie consent
We process personal data and use cookies on our website in accordance with our privacy policy. Some cookies are required to give you access to the website, while others are used to upgrade your user experience and are voluntary to accept. Choose below if you agree to us processing cookies to enable and analyze the provision of functionalities by third parties (eg social media plugins) and improve your user experience by analyzing your use of the website. You can withdraw your consent at any time.Privacy overview
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
| Cookie | Duration | Description |
|---|---|---|
| cookielawinfo-checbox-analytics | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics". |
| cookielawinfo-checbox-functional | 11 months | The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional". |
| cookielawinfo-checbox-others | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other. |
| cookielawinfo-checkbox-advertisement | 1 year | Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Advertisement" category . |
| cookielawinfo-checkbox-necessary | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary". |
| cookielawinfo-checkbox-performance | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance". |
| viewed_cookie_policy | 11 months | The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data. |
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
| Cookie | Duration | Description |
|---|---|---|
| bcookie | 2 years | LinkedIn sets this cookie from LinkedIn share buttons and ad tags to recognize browser ID. |
| lang | session | LinkedIn sets this cookie to remember a user's language setting. |
| lidc | 1 day | LinkedIn sets the lidc cookie to facilitate data center selection. |
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
| Cookie | Duration | Description |
|---|---|---|
| _ga | 2 years | The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors. |
| _ga_756JKDQ1KE | 2 years | This cookie is installed by Google Analytics. |
| _gat_gtag_UA_55739322_1 | 1 minute | Set by Google to distinguish users. |
| _gat_UA-55739322-1 | 1 minute | A variation of the _gat cookie set by Google Analytics and Google Tag Manager to allow website owners to track visitor behaviour and measure site performance. The pattern element in the name contains the unique identity number of the account or website it relates to. |
| _gid | 1 day | Installed by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website's performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously. |
| _hjAbsoluteSessionInProgress | 30 minutes | Hotjar sets this cookie to detect the first pageview session of a user. This is a True/False flag set by the cookie. |
| _hjFirstSeen | 30 minutes | Hotjar sets this cookie to identify a new user’s first session. It stores a true/false value, indicating whether it was the first time Hotjar saw this user. |
| _hjIncludedInPageviewSample | 2 minutes | Hotjar sets this cookie to know whether a user is included in the data sampling defined by the site's pageview limit. |
| _hjIncludedInSessionSample | 2 minutes | Hotjar sets this cookie to know whether a user is included in the data sampling defined by the site's daily session limit. |
| _hjTLDTest | session | To determine the most generic cookie path that has to be used instead of the page hostname, Hotjar sets the _hjTLDTest cookie to store different URL substring alternatives until it fails. |
| bscookie | 2 years | LinkedIn sets this cookie to store performed actions on the website. |
| CONSENT | 2 years | YouTube sets this cookie via embedded youtube-videos and registers anonymous statistical data. |
| nQ_cookieId | 1 year | Albacross sets this cookie to help identify companies for better lead generation and more effective ad targeting. |
| UserMatchHistory | 1 month | LinkedIn sets this cookie for LinkedIn Ads ID syncing. |
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
| Cookie | Duration | Description |
|---|---|---|
| VISITOR_INFO1_LIVE | 5 months 27 days | A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface. |
| YSC | session | YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages. |
| yt-remote-connected-devices | never | YouTube sets this cookie to store the video preferences of the user using embedded YouTube video. |
| yt-remote-device-id | never | YouTube sets this cookie to store the video preferences of the user using embedded YouTube video. |
Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.
| Cookie | Duration | Description |
|---|---|---|
| _hjSession_2668272 | 30 minutes | No description |
| _hjSessionUser_2668272 | 1 year | No description |
| AnalyticsSyncHistory | 1 month | No description |
| li_gc | 2 years | No description |
| nQ_userVisitId | 30 minutes | No description available. |
