this method is similar to what Barclays use in the UK, a dedicated device for auth code

but nowadays starting to replace with phone app instead

Aku kerja dalam FI
Kalau aku bukak cerita ni memang bungkus la business
Semoga BNM bukak mata dan haramkan je terus

Actually all OCBC branches have pretty nice OL working in their customer facing roles. Puchong and subang OCBC also many hnnngh. The bank pandai to pick smexy amois for marketing purposes.

But UAT website can show to public?

Bukan for internal only ke?

i had one concern regarding cimb website. 2 weeks ago i forgot to pay my unifi bill, so my int connection had been cut off. I refreshed few pages and websites to confirm it. CIMB clicks however, thier site able to load properly and i even manage to log in to my account (i frequently checked my balance) - hence im really worried with how the cookies in cimb clicks is kept.

things that baffled me is tht the website able to load as usual (even with side rolling tab) and i had my correct secureword shown even i didnt connect to the internet (this was pre-capthca) I was able to see my balance, however i didnt perform any transaction since i guess this will definitely failed to load. but then yeah how the cookies of cimb click is stored really terrifying. imagine using public pc or public wifi to access your bank account haha gg

where the appreciate tered bout them, create 1 la.   

i noticed they hav 1 amoi just to stand at the ticketing machine to press the button for u.
they will change shift & always only good looking amoi get that post.

Otot, JayaOne OCBC has the least crowd and you can always get a quick run!

India IT guys are only good at coding, not at logic.

You give them broad or vague instructions they gonna use the simplest shittiest code to get the job done coz they won’t bother to think “what else might be needed”.

If you have a good PM or account manager that can communicate to them exactly what specifications are needed, they can do it. Just don’t expect them to think or figure out anything for you.
Project manager mana? Tester only tests based on test scripts provided by the project team and 99% of the time test scripts from project team is BS.
CAPTCHA is one of the easiest “security measure” to bypass and this is a billion dollar bank we’re talking about.

ok let's not lose focus on this tered main point: bank sotong 

CIMB Singapore is using this ...

lol the timing
http://www.theedgemarkets.com/article/fast...ctions-—-cimb

cimb legacy system, only can handle 8 characters. So to create a front to able to use 20 characters this code was introduced.

But where seven found it?

The comic makes the assumption that the hacker still tries to brute force via character / symbol though. What happens if this simple word password usage takes off, and the hacker switches to brute forcing via dictionary words?

honestly, nothing wrong with CAPTCHA on any screen.

the core behind CAPTCHA is to reduce automated entry by machine. it is not possible to eliminate altogether in probability, but the bar is higher than nothing at all. even if you only manage to eliminate 50% of automated attacks, that itself is a reduction.

look beyond the CAPTCHA and stop complaining about it being on any screen.

instead, question what the screen does to further eliminate threats not yet filtered by CAPTCHA.

Change Password: Seems like even with the correct CIMB Clicks ID and password, it still shows
Invalid User ID or Password [CLK00619]

Update: Guys, to change password:

1. CIMB Clicks ID: <Your existing ID>
2. CIMB Clicks Password: <If your existing password length is > 8, then key in your password until the length of 8>

Example, old password is: mypasswod (length of 9 characters). In order to change password successfully, just key in mypasswo

This is ridiculous but its true.

cimb legacy system, only can handle 8 characters. So to create a front to able to use 20 characters this code was introduced.

But where seven found it?