Our capabilities. A story about what we can achieve

This report presents a cross-industry portfolio of security research and red-teaming achievements, including PoC ransomware on IoT devices, reverse engineering that traced the Mirai botnet to vulnerable DVR software, and discoveries of critical weaknesses in aviation EFB/IFE systems, automotive ECUs and apps (e.g., Mitsubishi Outlander), consumer and smart home products (Ring doorbells, Samsung TVs/fridges), EV chargers, kids’ tracking watches, queueing/ticketing platforms, and industrial/shipboard networks. Findings span insecure authentication/authorization, weak/default credentials, missing TLS certificate pinning, sensitive data exposure (e.g., static bearer tokens), exploitable reset flows, and hardware glitching techniques, many of which prompted vendor fixes, regulatory changes, or public safety improvements.