Activity - BSN CDB Support - Penril Support System

Activity

From May 02, 2022 to May 31, 2022

May 31, 2022

16:37 Support #12629 (User Acceptance Test): [SCP ID :##6039##] : Huawei apps: Pending for Pentest Nurul Syahirah Md Nawi
16:36 Support #12787 (User Acceptance Test): [SCP ID :##6138##] : ePFG - Allow today's date for multipl...: Nurul Syahirah Md Nawi
16:35 Support #12787: [SCP ID :##6138##] : ePFG - Allow today's date for multiple batch: Tested and passed by azyan on 25 feb 2022 Nurul Syahirah Md Nawi
15:20 Change #12942 (Finished Development): [SCP ID :##6254##] : Delete button for New Application navi...: Nurul Hasnieza Bt Mohd Zamri
14:41 Task #12991 (Finished Development): [ANDROID] - Pentest - I1 - Application Allows Use of Third-Pa...: Alert to notify users that they are using a third-party keyboard is already implemented. MUHAMMAD IHSAN
14:29 Support #12904 (Pending Review): [SCP ID :##6233##] : Add & as valid special char in File Upload: Prod deployed on 13/5/22 Nurul Syahirah Md Nawi
13:19 Task #12975 (Finished Development): [ANDROID] - L3 - Sensitive Information Leaked in Logs (Uninte...: added new rule to remove logging calls in proguard file Rahmat Aina Nadia
13:11 Support #12828 (Pending Review): [SCP ID :##6164##] : IBM DB2 Backup Taking longer than usual: Production deployed on 19/5/22 Nurul Syahirah Md Nawi
13:08 Support #12907 (Pending Review): [SCP ID :##6236##] : DB CPU High: Production deployed on 19/5/22 Nurul Syahirah Md Nawi
12:37 Support #12890 (Pending Review): [SCP ID :##6220##] : Update backup program: Production deployed on 13/5/22 Nurul Syahirah Md Nawi
12:23 Support #12855 (Work Completed-End life cycle): [SCP ID :##6190##] : Verify invalid data during EOD: Nurul Syahirah Md Nawi
12:22 Support #12855 (Pending Review): [SCP ID :##6190##] : Verify invalid data during EOD: Production deployed on 13/5/22 Nurul Syahirah Md Nawi
12:12 Support #13018 (Pending Review): [SCP ID :##6284##] : Rentas web service issue: Patch given on 19/05/2022
Production deployment on 22/05/2022 Najmi Pasarudin
11:14 Support #13016 (System Integration Test): [SCP ID :##6283##] : Jompay Charges not display in Tran...: Nurul Syahirah Md Nawi
11:13 Support #13016: [SCP ID :##6283##] : Jompay Charges not display in Transaction History and BSNeBi...: Tested & passed Nurul Syahirah Md Nawi
11:03 Support #12614 (Work Completed-End life cycle): [SCP ID :##6033##] : Auto credit information not ...: Nurul Syahirah Md Nawi
11:02 Support #12614: [SCP ID :##6033##] : Auto credit information not display at EOD screen: Occured because of conflict merge with multiwindow code, Result in bulk payment overwrite auto debit In eod processin... Nurul Syahirah Md Nawi
10:26 Support #12834 (Rejected - End of life cycle): [SCP ID :##6170##] : EPF RPA: Refer remarks Najmi on 1st April 22. Nurul Athira Abdul Rahim
10:03 Support #13016 (Internal Testing): [SCP ID :##6283##] : Jompay Charges not display in Transaction...: Hi Syahirah,
kindly refer the link below for the latest SIT APK.
Thank you.
https://drive.google.com/file... Rahmat Aina Nadia

May 30, 2022

17:28 Support #12740 (Work Completed-End life cycle): [SCP ID :##6097##] : Status pending Approver for ...: Nurul Syahirah Md Nawi
17:27 Support #12691 (Work Completed-End life cycle): [SCP ID :##6066##] : User Listing in User mainten...: Nurul Syahirah Md Nawi
17:24 Support #12652 (Work Completed-End life cycle): [SCP ID :##6049##] : Update text in CDB Organizat...: Nurul Syahirah Md Nawi
17:20 Support #12597 (Work Completed-End life cycle): [SCP ID :##6028##] : Enable edit for Company Name: Nurul Syahirah Md Nawi
17:18 Support #12464 (Work Completed-End life cycle): [SCP ID :##6012##] : Enhancement on Jompay failure: Nurul Syahirah Md Nawi
17:11 Support #12372 (Work Completed-End life cycle): [SCP ID :##5992##] : FTL status No: Nurul Syahirah Md Nawi
17:08 Support #12293 (Work Completed-End life cycle): [SCP D :##5973##] : KWSP Validation for amount: Nurul Syahirah Md Nawi
17:07 Support #12266 (Work Completed-End life cycle): [SCP ID :##5968##] : Data Entry/Edit Data transac...: Nurul Syahirah Md Nawi
17:03 Support #12257 (Work Completed-End life cycle): [SCP ID :##5965##] : Wrongly set for SMS sent by: Nurul Syahirah Md Nawi
16:56 Support #12179 (Work Completed-End life cycle): [SCP ID :##5948##] : Download Report BSNeBiz Tran...: Nurul Syahirah Md Nawi
16:41 Support #12826 (Work Completed-End life cycle): [SCP ID :##6162##] : iOS 3rd Party Account transf...: Nurul Syahirah Md Nawi

May 24, 2022

11:35 Support #13016 (Development / Work In Progress): [SCP ID :##6283##] : Jompay Charges not display ...: Rahmat Aina Nadia

May 19, 2022

16:03 Support #13018 (Closed - End of life cycle): [SCP ID :##6284##] : Rentas web service issue: Hi,
Kindly attend below request:-
RENTAS web service : failed to update status at rbg_bhi. Zahir Abd Latif
14:52 Support #13016 (Work Completed-End life cycle): [SCP ID :##6283##] : Jompay Charges not display i...: Hi,
Kindly attend below request:-
Issue
1) Amount deducted does not include charges
2) Transaction History and... Zahir Abd Latif

May 18, 2022

18:03 Task #12992 (Finished Development): [ANDROID] - Pentest - I2 - Application Screenshot (Unintended...: Change enable screenshots to disable screenshots in the onResume method. MUHAMMAD IHSAN
15:17 Support #12813 (System Integration Test): [SCP ID :##6150##] : Duitnow Immediate Reversal Error C...: Nurul Athira Abdul Rahim
14:43 Support #12961 (System Integration Test): [SCP ID :##6267##] : Fail receipt shown at Auto Debit B...: Nurul Athira Abdul Rahim

May 17, 2022

18:22 Task #12992 (Development / Work In Progress): [ANDROID] - Pentest - I2 - Application Screenshot (...: MUHAMMAD IHSAN
13:41 Task #12975 (Development / Work In Progress): [ANDROID] - L3 - Sensitive Information Leaked in Lo...: Rahmat Aina Nadia
13:39 Task #12988 (Finished Development): [ANDROID] - Pentest - L12 - Overly Permissive Permission: Rahmat Aina Nadia

May 13, 2022

17:50 Task #12990 (Development / Work In Progress): [IOS] - Pentest - L13 - App Transport Security (ATS...: Susanto Felix Brilliant

May 12, 2022

17:31 Support #12961: [SCP ID :##6267##] : Fail receipt shown at Auto Debit Billing: Tested & passed Nurul Syahirah Md Nawi
14:12 Support #12936: [SCP ID :##6250##] : Web Application Pentest Remediation: Add new H1 and M1 test result.
H1-screenshot from Firefox
M1-screenshot of removed unsecured library Najmi Pasarudin
14:05 Task #12984 (Internal Testing): Pentest - L8 - Parameter Tampering (Generate PDF): Issue:
Receipt PDF restful parameter can be modified
Finding:
Solution: Generate PDF parameter at middle-servic... Najmi Pasarudin
14:00 Support #12832 (User Acceptance Test): [SCP ID :##6168##] : Generate Report failed when select State: Hi Athira,
Item is ready for UAT. Najmi Pasarudin
14:00 Support #12832 (Development / Work In Progress): [SCP ID :##6168##] : Generate Report failed when...: Najmi Pasarudin
14:00 Support #12832 (Code Review): [SCP ID :##6168##] : Generate Report failed when select State: Najmi Pasarudin
13:59 Support #12775 (User Acceptance Test): [SCP ID :##6126##] : BSNeBiz Report for DuitNow - RFT115320: Hi Athira,
Item is ready for UAT. Najmi Pasarudin
13:59 Support #12775 (Development / Work In Progress): [SCP ID :##6126##] : BSNeBiz Report for DuitNow ...: Najmi Pasarudin
13:59 Support #12775 (Code Review): [SCP ID :##6126##] : BSNeBiz Report for DuitNow - RFT115320: Najmi Pasarudin
13:58 Support #12282 (User Acceptance Test): [SCP ID :##5970##] : IBAM Report - Transactional Summary: Hi Athira,
Item is ready for UAT. Najmi Pasarudin
13:58 Support #12282 (Development / Work In Progress): [SCP ID :##5970##] : IBAM Report - Transactional...: Najmi Pasarudin
13:58 Support #12282 (Code Review): [SCP ID :##5970##] : IBAM Report - Transactional Summary: Najmi Pasarudin
13:37 Support #12788 (User Acceptance Test): [SCP ID :##6139##] : B2B Posting Date Validation: Hi Athira,
This item has been deployed to UAT. Najmi Pasarudin
13:36 Support #12788 (Development / Work In Progress): [SCP ID :##6139##] : B2B Posting Date Validation: Najmi Pasarudin
13:36 Support #12788 (Code Review): [SCP ID :##6139##] : B2B Posting Date Validation: Najmi Pasarudin
13:15 Task #12979 (Development / Work In Progress): [IOS] - L5 - Application Backgrounding (Unintended ...: Susanto Felix Brilliant
12:49 Support #12961 (Internal Testing): [SCP ID :##6267##] : Fail receipt shown at Auto Debit Billing: Hi Athira,
Redmine has been updated to SIT. Please test. Najmi Pasarudin
12:48 Support #12961 (Development / Work In Progress): [SCP ID :##6267##] : Fail receipt shown at Auto ...: Najmi Pasarudin
12:48 Support #12961 (Code Review): [SCP ID :##6267##] : Fail receipt shown at Auto Debit Billing: Najmi Pasarudin
12:48 Support #12961: [SCP ID :##6267##] : Fail receipt shown at Auto Debit Billing: Issue:
Auto Debit file upload status is Pending Validate but the receipt stamp shows Failed
Finding:
Receipt doe... Najmi Pasarudin
12:19 Support #12282 (Pending UAT Deployment): [SCP ID :##5970##] : IBAM Report - Transactional Summary: Tested and passed by Firas on 11/5/22.
Kindly prepare the fixes and deploy to UAT environment Nurul Athira Abdul Rahim
12:18 Support #12775 (Pending UAT Deployment): [SCP ID :##6126##] : BSNeBiz Report for DuitNow - RFT115320: Tested and passed by Firas on 11/5/22.
Kindly prepare the fixes and deploy to UAT environment Nurul Athira Abdul Rahim
12:17 Support #12788 (Pending UAT Deployment): [SCP ID :##6139##] : B2B Posting Date Validation: Tested and passed by Firas on 11/5/22, kindly prepare the fixes to deploy to UAT environment. Nurul Athira Abdul Rahim
12:16 Support #12936 (Pending UAT Deployment): [SCP ID :##6250##] : Web Application Pentest Remediation: Tested and passed by Firas on 11/5/22
Kindly deploy the fixes to UAT environment Nurul Athira Abdul Rahim
12:14 Support #12832 (Pending UAT Deployment): [SCP ID :##6168##] : Generate Report failed when select ...: Tested and passed by Firas on 11/5/22
Please deploy the changes to UAT environment Nurul Athira Abdul Rahim
11:56 Task #12989 (Development / Work In Progress): [IOS] - Pentest - L12 - Overly Permissive Permission: Bin Hamzah Muhammad Fadhly
11:36 Task #12988 (Development / Work In Progress): [ANDROID] - Pentest - L12 - Overly Permissive Permi...: Rahmat Aina Nadia
10:16 Support #12813: [SCP ID :##6150##] : Duitnow Immediate Reversal Error Code Mapping and special ch...: Tested & passed Nurul Syahirah Md Nawi

May 11, 2022

13:53 Support #12759 (System Integration Test): [SCP ID :##6113##] : IBAM Report Enhancement: Nurul Athira Abdul Rahim
13:48 Task #12944 (System Integration Test): [SCP ID :##6249##] : Mobile Pentest Remediation M1 Insecur...: Nurul Athira Abdul Rahim
13:48 Task #12943 (System Integration Test): [SCP ID :##6249##] : Mobile Pentest Remediation M1 Insecur...: Nurul Athira Abdul Rahim
13:47 Support #12937 (System Integration Test): [SCP ID :##6251##] : Stop Payment / Reversal Maker Che...: Nurul Athira Abdul Rahim
11:58 Task #12992 (User Acceptance Test): [ANDROID] - Pentest - I2 - Application Screenshot (Unintended...: The application allows users to take a screenshot of the application's current state on their mobile device. Data may... Nurul Athira Abdul Rahim
11:56 Task #12991 (User Acceptance Test): [ANDROID] - Pentest - I1 - Application Allows Use of Third-Pa...: The application allows the use of third-party keyboards when entering sensitive data. A malicious third-party keyboar... Nurul Athira Abdul Rahim
10:40 Task #12990 (User Acceptance Test): [IOS] - Pentest - L13 - App Transport Security (ATS) Exceptio...: On Apple platforms, a networking security feature called App Transport Security (ATS) is available to apps and app ex... Nurul Athira Abdul Rahim
10:38 Task #12989 (User Acceptance Test): [IOS] - Pentest - L12 - Overly Permissive Permission: Mobile operating system assigns every installed application with a distinct system identity (Linux user ID and group ... Nurul Athira Abdul Rahim
10:37 Task #12988 (User Acceptance Test): [ANDROID] - Pentest - L12 - Overly Permissive Permission: Mobile operating system assigns every installed application with a distinct system identity (Linux user ID and group ... Nurul Athira Abdul Rahim
10:33 Task #12987 (Pending UAT Deployment): [ANDROID] - Pentest - L11 - Android Application Supports Cl...: The Android "clearTextTrafficPermitted" property is set to true in the application's Network Security Configuration f... Nurul Athira Abdul Rahim
10:31 Task #12986 (Pending UAT Deployment): Pentest - L10 - Circumvention of Workflow (OTP Bypass): During the application test, LGMS security team observed that it was possible to circumvent process workflows and byp... Nurul Athira Abdul Rahim
10:29 Task #12985 (Internal Testing): [SCP ID :##6249##] : Mobile Pentest Remediation - Pentest - L9 - ...: DuitNow fund transfers will look up the DuitNow ID and display the recipient's full name to allow the sender to verif... Nurul Athira Abdul Rahim
09:56 Task #12980 (Pending SIT Deployment): Pentest - L6 - Local Biometric Authentication Bypass: Similar to Support #12968 Najmi Pasarudin
09:56 Task #12968 (Pending SIT Deployment): [SCP ID :##6249##] : Mobile Pentest Remediation L1 Missing ...: Najmi Pasarudin
09:45 Support #12961 (Pending SIT Deployment): [SCP ID :##6267##] : Fail receipt shown at Auto Debit Bi...: Najmi Pasarudin
09:45 Support #12959 (Pending SIT Deployment): [SCP ID :##6266##] : DuitNow error: Najmi Pasarudin
09:44 Task #12984 (Pending SIT Deployment): Pentest - L8 - Parameter Tampering (Generate PDF): Najmi Pasarudin
09:17 Task #12984 (Development / Work In Progress): Pentest - L8 - Parameter Tampering (Generate PDF): Najmi Pasarudin

May 10, 2022

16:39 Task #12984 (User Acceptance Test): Pentest - L8 - Parameter Tampering (Generate PDF): At the time of assessment, LGMS security team identified that it is possible to generate a PDF receipt with tampered ... Nurul Athira Abdul Rahim
16:36 Task #12983 (Pending UAT Deployment): [IOS] - Pentest - L7 - Packet Replay (Fund Transfer): During the time of assessment, LGMS security team identified that packet replay for the fund transfer function is pos... Nurul Athira Abdul Rahim
16:35 Task #12982 (User Acceptance Test): [ANDROID] - Pentest - L7 - Packet Replay (Fund Transfer): During the time of assessment, LGMS security team identified that packet replay for the fund transfer function is pos... Nurul Athira Abdul Rahim
16:34 Task #12981 (Dropped-End of life cycle): Pentest - L7 - Packet Replay (Fund Transfer): During the time of assessment, LGMS security team identified that packet replay for the fund transfer function is pos... Nurul Athira Abdul Rahim
16:32 Task #12980 (Internal Testing): Pentest - L6 - Local Biometric Authentication Bypass: At the time of assessment, LGMS security team successfully bypassed the application's local biometric authentication ... Nurul Athira Abdul Rahim
16:30 Task #12979 (User Acceptance Test): [IOS] - L5 - Application Backgrounding (Unintended Data Leakage): Application that are minimized are in a suspended state. Mobile application caches a screenshot of the last screen of... Nurul Athira Abdul Rahim
16:26 Task #12978 (Development / Work In Progress): [IOS] - L4 - Missing Certificate/ Public Key Pinning: Pinning is the process of associating a host with their expected X509 certificate or public key. Once a certificate o... Nurul Athira Abdul Rahim
16:25 Task #12977 (Finished Development): [ANDROID] - L4 - Missing Certificate/ Public Key Pinning: Pinning is the process of associating a host with their expected X509 certificate or public key. Once a certificate o... Nurul Athira Abdul Rahim
16:23 Task #12976 (User Acceptance Test): [IOS] - L3 - Sensitive Information Leaked in Logs (Unintended...: Unintended data leakage occurs when a developer inadvertently places sensitive information or data in a location on t... Nurul Athira Abdul Rahim
16:22 Task #12975 (User Acceptance Test): [ANDROID] - L3 - Sensitive Information Leaked in Logs (Uninte...: Unintended data leakage occurs when a developer inadvertently places sensitive information or data in a location on t... Nurul Athira Abdul Rahim
16:19 Task #12974 (User Acceptance Test): [ANDROID] - Pentest - L2 No Server-Side Session Termination: At the time of assessment, LGMS security team identified that it is possible to access password protected functions u... Nurul Athira Abdul Rahim
16:18 Task #12973 (User Acceptance Test): [IOS] Pentest - L2 No Server-Side Session Termination: At the time of assessment, LGMS security team identified that it is possible to access password protected functions u... Nurul Athira Abdul Rahim
16:15 Task #12972 (Pending UAT Deployment): Pentest - L2 No Server-Side Session Termination: At the time of assessment, LGMS security team identified that it is possible to access password protected functions u... Nurul Athira Abdul Rahim
14:02 Support #12961 (Development / Work In Progress): [SCP ID :##6267##] : Fail receipt shown at Auto ...: Najmi Pasarudin
14:02 Support #12959 (Development / Work In Progress): [SCP ID :##6266##] : DuitNow error: Najmi Pasarudin
10:06 Task #12968 (Development / Work In Progress): [SCP ID :##6249##] : Mobile Pentest Remediation L1 ...: Najmi Pasarudin
10:05 Task #12968 (Internal Testing): [SCP ID :##6249##] : Mobile Pentest Remediation L1 Missing Functi...: Issue: Restful allows Payment and eStatement without password login
Finding: Restful relies on mobile password login... Najmi Pasarudin
09:37 Change #12942: [SCP ID :##6254##] : Delete button for New Application navigation.: Salam Hasnieza,
Please help to develop this enhancement.
Thank you. Najmi Pasarudin

May 09, 2022

12:51 Support #12937: [SCP ID :##6251##] : Stop Payment / Reversal Maker Checker: Tested & passed Nurul Syahirah Md Nawi

Also available in: Atom