Activity - BSN CDB Support - Penril Support System

Activity

From September 04, 2022 to October 03, 2022

September 30, 2022

11:01 Support #13243 (Work Completed-End life cycle): [SCP ID :##6447##] : BSNeBiz Report Failed: Hi,
Kindly attend below request:-
Failed to generate report if charges is null. Zahir Abd Latif

September 29, 2022

14:29 Support #13222 (System Integration Test): [SCP ID :##6426##] : Creation Date Bug: Tested and passed. Binti Marobi Athirah Umairah

September 28, 2022

11:35 Support #13112 (Pending Review): [SCP ID :##6360##] : Unable to login IBAM: Migration ID0060
-Production deploy on 27/09/2022 Nurul Hasnieza Bt Mohd Zamri
11:34 Support #13048 (Pending Review): [SCP ID :##6303##] : Unable to approve company creation: Migration ID0060
-Production deploy on 27/09/2022 Nurul Hasnieza Bt Mohd Zamri
11:32 Support #13135 (Pending Review): [SCP ID :##6383 ##] : Balance Display at CDB: Migration ID0060
-Production deploy on 27/09/2022 Nurul Hasnieza Bt Mohd Zamri

September 27, 2022

16:30 Task #12977 (Finished Development): [ANDROID] - L4 - Missing Certificate/ Public Key Pinning: Certificate/Public key pinning is implemented in the application. MUHAMMAD IHSAN
16:27 Task #13206 (Finished Development): HUAWEI - L2 - Missing Certificate/ Public Key Pinning: Certificate/Public key pinning is implemented in the application. MUHAMMAD IHSAN

September 26, 2022

10:27 Support #13135 (Pending Prod Deployment): [SCP ID :##6383 ##] : Balance Display at CDB: Nurul Hasnieza Bt Mohd Zamri
09:57 Support #13235 (Finished Development): [SCP ID :##6439##] : Paging Issue: Nurul Hasnieza Bt Mohd Zamri

September 23, 2022

15:07 Support #13235 (Work Completed-End life cycle): [SCP ID :##6439##] : Paging Issue: Hi,
Kindly attend below request:-
Issue in paging where system display 20 entries per page by default.
Zahir Abd Latif
12:38 Support #13231 (Pending Customer Feedback): [SCP ID :##6435##] : Audit Finding Clarification: Reply to Firas on 23/09/2022
Salam Firas,
I will reply to this email for tracking purposes. Below are my findings... Najmi Pasarudin
12:32 Support #13231 (Development / Work In Progress): [SCP ID :##6435##] : Audit Finding Clarification: Najmi Pasarudin

September 22, 2022

17:16 Task #13204 (Finished Development): HUAWEI - M1 - Lack of Code Integrity Checks: Implement a new integrity check to check and compare app signatures. The app will log out if the signature doesn't ma... MUHAMMAD IHSAN

September 20, 2022

12:36 Support #13231 (Work Completed-End life cycle): [SCP ID :##6435##] : Audit Finding Clarification: Hi,
Kindly attend below request:-
1. Incorrect Account Number captured in the Transaction Description field at BS... Zahir Abd Latif
10:02 Support #13118: [SCP ID :##6366##] : iGFMAS Second Validation: Email from Asrul on 15/09/2022
Salam En Najmi,
Regarding CDB iGFMAS 2nd validation change, we will maintain to ... Najmi Pasarudin

September 14, 2022

16:35 Task #13209 (Finished Development): HUAWEI - L5 - Partial Source Code Obfuscation: The team tested the application to check the code obfuscation. Using Java Decompiler allows the team to read the sour... MUHAMMAD IHSAN
10:31 Task #13214 (Finished Development): HUAWEI - I1 - Application Can Be Used In Emulator: The team tested the application to run in the emulator by using Virtual Device on Android Studio and Genymotion to te... MUHAMMAD IHSAN

September 13, 2022

21:06 Support #13222 (Internal Testing): [SCP ID :##6426##] : Creation Date Bug: Issue:
BSNeBiz Application date is wrong in report
Finding:
IBAM>CBE>BSNeBiz Application has bug. At page 1, aft... Najmi Pasarudin
08:37 Support #13222 (Development / Work In Progress): [SCP ID :##6426##] : Creation Date Bug: Najmi Pasarudin

September 12, 2022

17:05 Task #13211 (Finished Development): HUAWEI - L7 - Private IP Addresses Disclosed (Unintended Data...: The IP addresses will be removed before release. MUHAMMAD IHSAN
12:25 Task #13203: HUAWEI - H1 - Unencrypted Communications: for Production APK, the HTTP communications and public IP address are not permitted and will give the server under ma... Rahmat Aina Nadia
12:14 Task #13205: HUAWEI - L1 - Android usesCleartextTraffic Enabled: Using manifestPlaceholders in build.gradle(:app), usesCleartextTraffic will be set to "false" when building signed apk. MUHAMMAD IHSAN
11:05 Support #13195 (System Integration Test): [SCP ID :##6411##] : PruBSN file: There are steps that require JTM parts. Proceed to SIT. Azyan will test end to end. Binti Marobi Athirah Umairah
10:19 Task #13203 (Finished Development): HUAWEI - H1 - Unencrypted Communications: Rahmat Aina Nadia
09:42 Support #13222 (Work Completed-End life cycle): [SCP ID :##6426##] : Creation Date Bug: Hi,
Kindly attend below request:-
Bug at IBAM>CBE>BSNeBiz Application. Everytime admin updates page 1(Organizatio... Zahir Abd Latif

September 09, 2022

18:37 Task #13210 (Finished Development): HUAWEI - L6 - Overly Permissive Permission: Permission updated following Android fixes. MUHAMMAD IHSAN
18:35 Task #13213 (Finished Development): HUAWEI - L9 - Android Application Supports Cleartext Traffic: set usesCleartextTraffic to false on signed build apk MUHAMMAD IHSAN
18:34 Task #13205 (Finished Development): HUAWEI - L1 - Android usesCleartextTraffic Enabled: set usesCleartextTraffic to false on signed build apk MUHAMMAD IHSAN
11:23 Support #13073 (Work Completed-End life cycle): [SCP ID :##6323##] : Increase description length ...: Migration ID0059 Binti Marobi Athirah Umairah
11:22 Support #13110 (Work Completed-End life cycle): [SCP ID :##6358##] : FA/FR File date time to defa...: Migration ID0059 Binti Marobi Athirah Umairah
11:20 Support #12787 (Work Completed-End life cycle): [SCP ID :##6138##] : ePFG - Allow today's date fo...: Migration ID0059 Binti Marobi Athirah Umairah
11:19 Support #12813 (Work Completed-End life cycle): [SCP ID :##6150##] : Duitnow Immediate Reversal E...: Migration ID0059 Binti Marobi Athirah Umairah
11:18 Support #12961 (Work Completed-End life cycle): [SCP ID :##6267##] : Fail receipt shown at Auto D...: Migration ID0059 Binti Marobi Athirah Umairah
11:17 Support #12938 (Work Completed-End life cycle): [SCP ID :##6252##] : COnverted EPFG file unable...: Migration ID0059 Binti Marobi Athirah Umairah
11:15 Support #12936 (Work Completed-End life cycle): [SCP ID :##6250##] : Web Application Pentest Reme...: Migration ID0059 Binti Marobi Athirah Umairah
11:14 Support #12830 (Work Completed-End life cycle): [SCP ID :##6166##] : Audit trail status not sync: Migration ID0059 Binti Marobi Athirah Umairah
11:06 Support #12788 (Work Completed-End life cycle): [SCP ID :##6139##] : B2B Posting Date Validation: Migration ID0059 Binti Marobi Athirah Umairah
11:04 Support #12284 (Work Completed-End life cycle): [SCP ID :##5971##] : Transaction History - Captur...: Migration ID0059 Binti Marobi Athirah Umairah
10:22 Task #13210 (Development / Work In Progress): HUAWEI - L6 - Overly Permissive Permission: MUHAMMAD IHSAN

September 08, 2022

17:58 Task #13205 (Development / Work In Progress): HUAWEI - L1 - Android usesCleartextTraffic Enabled: MUHAMMAD IHSAN
17:58 Task #13213 (Development / Work In Progress): HUAWEI - L9 - Android Application Supports Cleartex...: MUHAMMAD IHSAN
12:09 Support #13158 (System Integration Test): [SCP ID :##6398##] : Rentas transaction fail due to Val...: Tested and Passed Binti Marobi Athirah Umairah
12:05 Task #13207 (Finished Development): HUAWEI - L3 - Local Biometric Authentication Bypass: Integrate login Fingerprint service MUHAMMAD IHSAN

September 07, 2022

17:36 Task #13214 (Closed - End of life cycle): HUAWEI - I1 - Application Can Be Used In Emulator: Description :
The application can be used in an emulator and does not implement emulator detection to defend again... Nurul Athira Abdul Rahim
17:34 Task #13213 (Closed - End of life cycle): HUAWEI - L9 - Android Application Supports Cleartext Tr...: Description :
The Android "clearTextTrafficPermitted" property is set to true in the application's Network Security... Nurul Athira Abdul Rahim
17:32 Task #13212 (New - Begin Life Cycle): HUAWEI - L8 - Unsupported Android Version: Description :
The application can be installed/used on versions of Android which no longer have support for updates... Nurul Athira Abdul Rahim
17:30 Task #13211 (Closed - End of life cycle): HUAWEI - L7 - Private IP Addresses Disclosed (Unintende...: Description :
LGMS security team identified private IP addresses stored within the mobile application installer pac... Nurul Athira Abdul Rahim
17:28 Task #13210 (Closed - End of life cycle): HUAWEI - L6 - Overly Permissive Permission: Description :
Mobile operating system assigns every installed application with a distinct system identity (Linux us... Nurul Athira Abdul Rahim
17:26 Task #13209 (Closed - End of life cycle): HUAWEI - L5 - Partial Source Code Obfuscation: Desription :
Obfuscation is a technique employed to hide the intent of an application. The techniques used to obscu... Nurul Athira Abdul Rahim
17:24 Task #13208 (New - Begin Life Cycle): HUAWEI - L4 - Misconfiguration "Content-Security-Policy" He...: Description:
The "Content-Security-Policy" (CSP) header is designed to modify the way browsers and WebViews render ... Nurul Athira Abdul Rahim
17:21 Task #13207 (Closed - End of life cycle): HUAWEI - L3 - Local Biometric Authentication Bypass: Description :
At the time of assessment, LGMS security team successfully bypassed the application's local biometr... Nurul Athira Abdul Rahim
17:19 Task #13206 (Closed - End of life cycle): HUAWEI - L2 - Missing Certificate/ Public Key Pinning: Description :
Pinning is the process of associating a host with their expected X509 certificate or public key. Once... Nurul Athira Abdul Rahim
17:16 Task #13205 (Closed - End of life cycle): HUAWEI - L1 - Android usesCleartextTraffic Enabled: Description:
The android:usesCleartextTraffic flag indicates whether the app intends to use cleartext network traffi... Nurul Athira Abdul Rahim
17:14 Task #13204 (Closed - End of life cycle): HUAWEI - M1 - Lack of Code Integrity Checks: Description :
At the time of assessment, LGMS security team identified that the mobile application does not detect ... Nurul Athira Abdul Rahim
17:11 Task #13203 (Closed - End of life cycle): HUAWEI - H1 - Unencrypted Communications: Description :
The application allows users to connect to it over unencrypted connections. An attacker suitably po... Nurul Athira Abdul Rahim
17:09 Task #13202 (New - Begin Life Cycle): Huawei Pentest Remidiation: Kindly attend below request:-
Huawei Mobile Pentest Remediation
Nurul Athira Abdul Rahim
15:51 Support #13201 (Work Completed-End life cycle): [SCP ID :##6418##] : Android - Session Creation F...: Hi,
Kindly attend below request:-
Mobile: Android
Apps Version: 1.9.3
Issue: Error prompt 'Session creation fai... Zahir Abd Latif
14:32 Support #13195 (Internal Testing): [SCP ID :##6411##] : PruBSN file: Requirement:
# Enable company setting for PruBSN
# Preprare PruBSN file upload
Test steps:
# Access BSNeBiz CDB... Najmi Pasarudin
14:18 Support #13195 (Development / Work In Progress): [SCP ID :##6411##] : PruBSN file: Najmi Pasarudin

September 05, 2022

11:48 Support #13132 (System Integration Test): [SCP ID :##6380 ##] : Enable Loan Account and Batch Wi...: Nurul Athira Abdul Rahim
11:46 Support #13147 (System Integration Test): [SCP ID :##6389##] : Application Form Expired notification: Nurul Athira Abdul Rahim
11:06 Support #13195 (Work Completed-End life cycle): [SCP ID :##6411##] : PruBSN file: Hi,
Kindly attend below request:-
Request to:
1. Merge content for Purchase and Others in 1 file (differentiate ... Zahir Abd Latif

Also available in: Atom