Activity
From September 04, 2022 to October 03, 2022
September 30, 2022
- 11:01 Support #13243 (Work Completed-End life cycle): [SCP ID :##6447##] : BSNeBiz Report Failed
- Hi,
Kindly attend below request:-
Failed to generate report if charges is null.
September 29, 2022
- 14:29 Support #13222 (System Integration Test): [SCP ID :##6426##] : Creation Date Bug
- Tested and passed.
September 28, 2022
- 11:35 Support #13112 (Pending Review): [SCP ID :##6360##] : Unable to login IBAM
- Migration ID0060
-Production deploy on 27/09/2022 - 11:34 Support #13048 (Pending Review): [SCP ID :##6303##] : Unable to approve company creation
- Migration ID0060
-Production deploy on 27/09/2022 - 11:32 Support #13135 (Pending Review): [SCP ID :##6383 ##] : Balance Display at CDB
- Migration ID0060
-Production deploy on 27/09/2022
September 27, 2022
- 16:30 Task #12977 (Finished Development): [ANDROID] - L4 - Missing Certificate/ Public Key Pinning
- Certificate/Public key pinning is implemented in the application.
- 16:27 Task #13206 (Finished Development): HUAWEI - L2 - Missing Certificate/ Public Key Pinning
- Certificate/Public key pinning is implemented in the application.
September 26, 2022
- 10:27 Support #13135 (Pending Prod Deployment): [SCP ID :##6383 ##] : Balance Display at CDB
- 09:57 Support #13235 (Finished Development): [SCP ID :##6439##] : Paging Issue
September 23, 2022
- 15:07 Support #13235 (Work Completed-End life cycle): [SCP ID :##6439##] : Paging Issue
- Hi,
Kindly attend below request:-
Issue in paging where system display 20 entries per page by default.
- 12:38 Support #13231 (Pending Customer Feedback): [SCP ID :##6435##] : Audit Finding Clarification
- Reply to Firas on 23/09/2022
Salam Firas,
I will reply to this email for tracking purposes. Below are my findings... - 12:32 Support #13231 (Development / Work In Progress): [SCP ID :##6435##] : Audit Finding Clarification
September 22, 2022
- 17:16 Task #13204 (Finished Development): HUAWEI - M1 - Lack of Code Integrity Checks
- Implement a new integrity check to check and compare app signatures. The app will log out if the signature doesn't ma...
September 20, 2022
- 12:36 Support #13231 (Work Completed-End life cycle): [SCP ID :##6435##] : Audit Finding Clarification
- Hi,
Kindly attend below request:-
1. Incorrect Account Number captured in the Transaction Description field at BS... - 10:02 Support #13118: [SCP ID :##6366##] : iGFMAS Second Validation
- Email from Asrul on 15/09/2022
Salam En Najmi,
Regarding CDB iGFMAS 2nd validation change, we will maintain to ...
September 14, 2022
- 16:35 Task #13209 (Finished Development): HUAWEI - L5 - Partial Source Code Obfuscation
- The team tested the application to check the code obfuscation. Using Java Decompiler allows the team to read the sour...
- 10:31 Task #13214 (Finished Development): HUAWEI - I1 - Application Can Be Used In Emulator
- The team tested the application to run in the emulator by using Virtual Device on Android Studio and Genymotion to te...
September 13, 2022
- 21:06 Support #13222 (Internal Testing): [SCP ID :##6426##] : Creation Date Bug
- Issue:
BSNeBiz Application date is wrong in report
Finding:
IBAM>CBE>BSNeBiz Application has bug. At page 1, aft... - 08:37 Support #13222 (Development / Work In Progress): [SCP ID :##6426##] : Creation Date Bug
September 12, 2022
- 17:05 Task #13211 (Finished Development): HUAWEI - L7 - Private IP Addresses Disclosed (Unintended Data...
- The IP addresses will be removed before release.
- 12:25 Task #13203: HUAWEI - H1 - Unencrypted Communications
- for Production APK, the HTTP communications and public IP address are not permitted and will give the server under ma...
- 12:14 Task #13205: HUAWEI - L1 - Android usesCleartextTraffic Enabled
- Using manifestPlaceholders in build.gradle(:app), usesCleartextTraffic will be set to "false" when building signed apk.
- 11:05 Support #13195 (System Integration Test): [SCP ID :##6411##] : PruBSN file
- There are steps that require JTM parts. Proceed to SIT. Azyan will test end to end.
- 10:19 Task #13203 (Finished Development): HUAWEI - H1 - Unencrypted Communications
- 09:42 Support #13222 (Work Completed-End life cycle): [SCP ID :##6426##] : Creation Date Bug
- Hi,
Kindly attend below request:-
Bug at IBAM>CBE>BSNeBiz Application. Everytime admin updates page 1(Organizatio...
September 09, 2022
- 18:37 Task #13210 (Finished Development): HUAWEI - L6 - Overly Permissive Permission
- Permission updated following Android fixes.
- 18:35 Task #13213 (Finished Development): HUAWEI - L9 - Android Application Supports Cleartext Traffic
- set usesCleartextTraffic to false on signed build apk
- 18:34 Task #13205 (Finished Development): HUAWEI - L1 - Android usesCleartextTraffic Enabled
- set usesCleartextTraffic to false on signed build apk
- 11:23 Support #13073 (Work Completed-End life cycle): [SCP ID :##6323##] : Increase description length ...
- Migration ID0059
- 11:22 Support #13110 (Work Completed-End life cycle): [SCP ID :##6358##] : FA/FR File date time to defa...
- Migration ID0059
- 11:20 Support #12787 (Work Completed-End life cycle): [SCP ID :##6138##] : ePFG - Allow today's date fo...
- Migration ID0059
- 11:19 Support #12813 (Work Completed-End life cycle): [SCP ID :##6150##] : Duitnow Immediate Reversal E...
- Migration ID0059
- 11:18 Support #12961 (Work Completed-End life cycle): [SCP ID :##6267##] : Fail receipt shown at Auto D...
- Migration ID0059
- 11:17 Support #12938 (Work Completed-End life cycle): [SCP ID :##6252##] : COnverted EPFG file unable...
- Migration ID0059
- 11:15 Support #12936 (Work Completed-End life cycle): [SCP ID :##6250##] : Web Application Pentest Reme...
- Migration ID0059
- 11:14 Support #12830 (Work Completed-End life cycle): [SCP ID :##6166##] : Audit trail status not sync
- Migration ID0059
- 11:06 Support #12788 (Work Completed-End life cycle): [SCP ID :##6139##] : B2B Posting Date Validation
- Migration ID0059
- 11:04 Support #12284 (Work Completed-End life cycle): [SCP ID :##5971##] : Transaction History - Captur...
- Migration ID0059
- 10:22 Task #13210 (Development / Work In Progress): HUAWEI - L6 - Overly Permissive Permission
September 08, 2022
- 17:58 Task #13205 (Development / Work In Progress): HUAWEI - L1 - Android usesCleartextTraffic Enabled
- 17:58 Task #13213 (Development / Work In Progress): HUAWEI - L9 - Android Application Supports Cleartex...
- 12:09 Support #13158 (System Integration Test): [SCP ID :##6398##] : Rentas transaction fail due to Val...
- Tested and Passed
- 12:05 Task #13207 (Finished Development): HUAWEI - L3 - Local Biometric Authentication Bypass
- Integrate login Fingerprint service
September 07, 2022
- 17:36 Task #13214 (Closed - End of life cycle): HUAWEI - I1 - Application Can Be Used In Emulator
- Description :
The application can be used in an emulator and does not implement emulator detection to defend again... - 17:34 Task #13213 (Closed - End of life cycle): HUAWEI - L9 - Android Application Supports Cleartext Tr...
- Description :
The Android "clearTextTrafficPermitted" property is set to true in the application's Network Security... - 17:32 Task #13212 (New - Begin Life Cycle): HUAWEI - L8 - Unsupported Android Version
- Description :
The application can be installed/used on versions of Android which no longer have support for updates... - 17:30 Task #13211 (Closed - End of life cycle): HUAWEI - L7 - Private IP Addresses Disclosed (Unintende...
- Description :
LGMS security team identified private IP addresses stored within the mobile application installer pac... - 17:28 Task #13210 (Closed - End of life cycle): HUAWEI - L6 - Overly Permissive Permission
- Description :
Mobile operating system assigns every installed application with a distinct system identity (Linux us... - 17:26 Task #13209 (Closed - End of life cycle): HUAWEI - L5 - Partial Source Code Obfuscation
- Desription :
Obfuscation is a technique employed to hide the intent of an application. The techniques used to obscu... - 17:24 Task #13208 (New - Begin Life Cycle): HUAWEI - L4 - Misconfiguration "Content-Security-Policy" He...
- Description:
The "Content-Security-Policy" (CSP) header is designed to modify the way browsers and WebViews render ... - 17:21 Task #13207 (Closed - End of life cycle): HUAWEI - L3 - Local Biometric Authentication Bypass
- Description :
At the time of assessment, LGMS security team successfully bypassed the application's local biometr... - 17:19 Task #13206 (Closed - End of life cycle): HUAWEI - L2 - Missing Certificate/ Public Key Pinning
- Description :
Pinning is the process of associating a host with their expected X509 certificate or public key. Once... - 17:16 Task #13205 (Closed - End of life cycle): HUAWEI - L1 - Android usesCleartextTraffic Enabled
- Description:
The android:usesCleartextTraffic flag indicates whether the app intends to use cleartext network traffi... - 17:14 Task #13204 (Closed - End of life cycle): HUAWEI - M1 - Lack of Code Integrity Checks
- Description :
At the time of assessment, LGMS security team identified that the mobile application does not detect ... - 17:11 Task #13203 (Closed - End of life cycle): HUAWEI - H1 - Unencrypted Communications
- Description :
The application allows users to connect to it over unencrypted connections. An attacker suitably po... - 17:09 Task #13202 (New - Begin Life Cycle): Huawei Pentest Remidiation
- Kindly attend below request:-
Huawei Mobile Pentest Remediation
- 15:51 Support #13201 (Work Completed-End life cycle): [SCP ID :##6418##] : Android - Session Creation F...
- Hi,
Kindly attend below request:-
Mobile: Android
Apps Version: 1.9.3
Issue: Error prompt 'Session creation fai... - 14:32 Support #13195 (Internal Testing): [SCP ID :##6411##] : PruBSN file
- Requirement:
# Enable company setting for PruBSN
# Preprare PruBSN file upload
Test steps:
# Access BSNeBiz CDB... - 14:18 Support #13195 (Development / Work In Progress): [SCP ID :##6411##] : PruBSN file
September 05, 2022
- 11:48 Support #13132 (System Integration Test): [SCP ID :##6380 ##] : Enable Loan Account and Batch Wi...
- 11:46 Support #13147 (System Integration Test): [SCP ID :##6389##] : Application Form Expired notification
- 11:06 Support #13195 (Work Completed-End life cycle): [SCP ID :##6411##] : PruBSN file
- Hi,
Kindly attend below request:-
Request to:
1. Merge content for Purchase and Others in 1 file (differentiate ...
Also available in: Atom