Park
Chat CIMB kena hack?
|
|
 Dec 17 2018, 12:44 AM
|
 
Senior Member
2,687 posts Joined: Sep 2012 
|
|
Quote|
|
|
|
|
Dec 17 2018, 12:44 AM
|
Senior Member
1,750 posts Joined: Feb 2009 
|
QUOTE(maxera @ Dec 17 2018, 12:36 AM) Actually you need to enter your password and then enter any alphabets and numbers after your password. You can login as usual. That's fcked up. Holy shit I just tried that and I could still log in WTFFFF |
|
|
Dec 17 2018, 12:45 AM
|
Junior Member
321 posts Joined: Jun 2016
|
QUOTE(ahhann @ Dec 17 2018, 12:40 AM) not going to share the video for the obvious reason. later all /k use that method to go attack pula hahahahhahah ~ wait la, i'm sure your whatsapp will ring later. share to ayamayam holy moly no do this kind of stuff 1  |
|
|
Dec 17 2018, 12:45 AM
|
Junior Member
964 posts Joined: Jun 2008
|
QUOTE(thewan @ Dec 17 2018, 12:42 AM) So much work. SMS can be redirected to another number. No need IC, no need Sim Card with target number. No need visit Police or telco, just sit at home. Just redirect all the bank sms to a hacker controlled number. Old vulnerability is old, please get educated dear Malaysians, and tell your banks, No more sms based authentication. Bank Negara should step in and fine or revoke licenses of banks that do not protect their customers money adequately. Finally there are someone who knows the business.Start here: https://arstechnica.com/information-technol...uting-protocol/ and then look up more on SS7 and SMS and how it all works. Then you will understand, no more SMS please. I already warn all institute that uses sms based TAC about how easy to reroute sms, yet it falls to deaf ear. |
|
|
Dec 17 2018, 12:45 AM
|
Senior Member
3,968 posts Joined: Sep 2012
|
QUOTE(Sichiri @ Dec 17 2018, 12:42 AM) Just username is enough to log in? Nope. I can't talk too much bout it. But it's a big flaw. |
|
|
Dec 17 2018, 12:46 AM
Show posts by this member only | IPv6 | Post
#166
|
Senior Member
9,796 posts Joined: Jun 2008 From: Rubber Duck Pond
|
Just change your password guys.
Your old password + any numbers or alphabets can go in weh. But then hackers need to know your old password la else also no use cannot go in. I just changed mine and now okay adi. |
|
|
|
|
|
Dec 17 2018, 12:46 AM
|
Senior Member
1,320 posts Joined: Jan 2003 From: メラカ /b/PowerLvl:Over9000!
|
QUOTE(HolySatan @ Dec 17 2018, 12:41 AM)  dah kantoi since morning QUOTE(Duckies @ Dec 17 2018, 12:43 AM) Just tested. This is so fucking legit man. Pls change ur password guys. This is an issue but I don’t think this issue is what is important?In order for the hacker to go into your account it still needs to get the first 8 char correctly. Is this the video that is circulating in WhatsApp? |
|
|
Dec 17 2018, 12:47 AM
|
Senior Member
5,363 posts Joined: Apr 2005 From: กรุงเทพมหานคร BKK 
|
QUOTE(LaiN87 @ Dec 17 2018, 12:46 AM) This is an issue but I don’t think this issue is what is important? dude it's not important?In order for the hacker to go into your account it still needs to get the first 8 char correctly. Is this the video that is circulating in WhatsApp? security is COMPROMISED man. |
|
|
Dec 17 2018, 12:47 AM
Show posts by this member only | IPv6 | Post
#169
|
|
Senior Member
9,796 posts Joined: Jun 2008 From: Rubber Duck Pond
|
QUOTE(LaiN87 @ Dec 17 2018, 12:46 AM) This is an issue but I don’t think this issue is what is important? Yea don't think it's a big concern since the hacker would need to know the first 8 characters correctly. But then it's still so fuckup to know it works as well with 8 characters + any random characters.In order for the hacker to go into your account it still needs to get the first 8 char correctly. Is this the video that is circulating in WhatsApp? |
|
|
Dec 17 2018, 12:47 AM
Show posts by this member only | IPv6 | Post
#170
|
|
Junior Member
215 posts Joined: May 2013
|
QUOTE(se7en @ Dec 16 2018, 10:50 PM) ok, ran through their page, apart from the recaptcha, nothing else to worry about. Thanks for telling us that.and for the record, using recaptcha on a bank login page is plain dumb. |
|
|
Dec 17 2018, 12:48 AM
|
Junior Member
397 posts Joined: Oct 2007 From: broken heart land, single forever~
|
But I recommend that you go call cimb and close you internet banking immediately
|
|
|
Dec 17 2018, 12:48 AM
|
Senior Member
695 posts Joined: Jan 2008
|
I'm closing my account tomorrow.
|
|
|
Dec 17 2018, 12:49 AM
|
|
Newbie
4 posts Joined: May 2018
|
Can u change pw in cimb app for ios?
|
|
|
|
|
|
Dec 17 2018, 12:49 AM
|
|
Junior Member
321 posts Joined: Jun 2016
|
should i change my passwords?
|
|
|
Dec 17 2018, 12:49 AM
|
Senior Member
942 posts Joined: Jan 2007
|
QUOTE(jimmyktp @ Dec 16 2018, 11:30 PM) Now they force you to add in special character in their password. Lagi menyusahkan. Eh? Special character? Mine didn't ask for that.Really half pass six implementations. Instead of making life hard for 1 time, they make life hard everytime someone login! Their app and website really lack user-friendliness. I remember I send in CC enquiry via their website compose message box, the stupid bank officer have the cheek to ask for a reply reason. Problem is, there isn't a reply button! KNS.. I had to compose a new message again. |
|
|
Dec 17 2018, 12:49 AM
|
Junior Member
109 posts Joined: May 2013
|
QUOTE(HolySatan @ Dec 17 2018, 12:41 AM) dah kantoi since morning |
|
|
Dec 17 2018, 12:49 AM
|
Junior Member
51 posts Joined: Dec 2015
|
QUOTE(Mr. Najib Razak @ Dec 17 2018, 12:49 AM) should i change my passwords? Better to be safe than sorry. |
|
|
Dec 17 2018, 12:49 AM
|
|
Senior Member
3,968 posts Joined: Sep 2012
|
Guys. Yes it is security compromise. But it's more of a flaw. Ppl will still need to know ur username and current password to login. So just refrain from sharing account.
|
|
|
Dec 17 2018, 12:49 AM
Show posts by this member only | IPv6 | Post
#179
|
Senior Member
864 posts Joined: Oct 2011 From: planet earth
|
Just changed my password using the online password generator that se7en posted.
This post has been edited by Supreme1394: Dec 17 2018, 12:51 AM |
|
|
Dec 17 2018, 12:49 AM
|
Senior Member
1,192 posts Joined: Jan 2003 From: Kepong, Kuala Lumpur, Malaysia.
|
QUOTE(Mr. Najib Razak @ Dec 17 2018, 12:49 AM) should i change my passwords? No need since they're probably all frozen already.  This post has been edited by Sichiri: Dec 17 2018, 12:50 AM |
| Change to: |  0.0198sec
 0.70
 6 queries
 GZIP Disabled
Time is now: 12th December 2025 - 03:40 PM |
All Rights Reserved © 2002- 2025 Vijandren Ramadass (~unite against racism~)
Powered by Invision Power Board © 2025 IPS, Inc.