Berezha Security Blog

How to check your website security online

Many online services provide you various passive or active security checks. If your web site has been connected to the internet for a while, chances are quite a few analytics gathering services have already noticed it. Some of them allow you to search their pre-scanned databases, while the others let you run benign vulnerability scans. Checking your domain name against their database is a proper security check-up.

read more

How to write a CV in cybersecurity

Each time after hosting a Nonamecon or OWASP Kyiv event, my mailbox is flooded by messages from people asking if we have job openings. How can one join our company? Here is my CV! And after getting a response, they ask how they can improve it.

read more

Berezha Web Application Pentester Training

Today we are announcing our Web Application Pentester Training course. Berezha provides Secure Development Awareness training in the corporate setting for a few years now. Today, in addition to this business product, we launch a training program that every individual could join. What is the goal, and what is the difference?

read more

Our response to Coronavirus and COVID-19

In response to the global outbreak of COVID-19 caused by the new type of coronavirus, Berezha Security switches to Work from Home mode and postpones all on-site engagements. We assure all our clients and partners that this will not affect the timeliness of project results or any other terms and agreements.

read more

Critical Vulnerabilities We Had Found in 2019

Berezha Security is a rather small offensive security consultancy focused around high quality of results and long-term partnerships with every client. However, we find a lot of bugs, too, so we try to keep you up to date with what we find. Last year we listed Top-5 flaws that have let us into the clients’ infrastructure. This year we have decided to publish all the bugs that made us stop all pentesting activities, report the findings, and work with the clients to fix them as soon as possible. We rate this kind of bugs as Critical and deem them as all-stop events, the same way we treat finding an “incident in action” or obtaining access to large amounts of highly-sensitive data. So the bugs that made us freeze in 2019 are.

read more

Here we grow: Berezha Security is hiring!

Dear cybersecurity community, we are happy to start 2020 by opening a position of Penetration Tester in our Kyiv office. To submit your resume, go to and select ‘‘Work at Berezha” in the contact form. Please make sure you provide a URL to your CV or just send a copy to [email protected] Although we will carefully review and consider all received CVs, we guarantee an invitation for the interview to the professionals who demonstrated any of the following achievements…

read more

Berezha Security turns 5 today!

We send warm thanks to all our customers and partners: we greatly appreciate the trust you put in us and we will go on doing our best to meet your expectations! We greatly appreciate the work our team puts into the services we provide and we are proud to have every...

read more

Top 5 Things Companies Don’t Do for Security

In one of our previous posts, we wrote about the top 5 ways to get hacked that were extremely popular last year. This post is about the top 5 ways to protect yourself and your customers that companies could benefit from but they don’t.

read more

+380 (44) 364 7336    +1 (315) 303 2323

6 Nimanska St., 41, Kyiv, Ukraine 01103

77 Sichovykh Striltsiv St., Kyiv, Ukraine