It would be nice if banks ran bug bounties.
And this is just the tiniest mistake out there..

This breach + a bot and user data will literally be mined off their servers

What y'all think?

Correct me if am wrong but This look like command line. I see bvn number this is alarming

API endpoint don cast! DevOps go hear wheen for this operational leak.

Na to run Postman on the endpoint o! I hope this isn't a Fineract server leaking like water o

Edit:
Looks like a Temenos T24 Core Banking server.

OP, please obfuscate the data more. I can tell that it's an account belonging to Bleep Bleep. Please protect their details

airsaylongcome:
API endpoint don cast! DevOps go hear wheen for this operational leak.

Na to run Postman on the endpoint o! I hope this isn't a Fineract server leaking like water o

Edit:
Looks like a Temenos T24 Core Banking server.

OP, please obfuscate the data more. I can tell that it's an account belonging to Omolara Adeyemi. Phone number fully visible. Please protect their details

Thanks for that. Thought i had it done properly.
Sensitive details better obfuscated now

LogicBomb8:
Correct me if am wrong but This look like command line. I see bvn number this is alarming

Sincerely a drop of few errors that i have discovered from most of these banks.
A prominent bank has people cards left hanging for anybody smart enough too mine off.

There is no proper channel to report through without it biting back and definitely such white hat act would be frowned upon than praised

airsaylongcome:
API endpoint don cast! DevOps go hear wheen for this operational leak.

Na to run Postman on the endpoint o! I hope this isn't a Fineract server leaking like water o

Edit:
Looks like a Temenos T24 Core Banking server.

OP, please obfuscate the data more. I can tell that it's an account belonging to ____. Phone number fully visible. Please protect their details

kudos your analogy almost gave me some chills. I'm no longer running i want to learn what you know. I wish to know how to go about it

joeten:


Sincerely a drop of few errors that i have discovered from most of these banks.
A prominent bank has people cards left hanging for anybody smart enough too mine off.

There is no proper channel to report through without it biting back and definitely such white hat act would be frowned upon than praised

ther need to be a recognized body of bug hunters or white hat hackers as revealing this to the bank is an evidence to incriminate ya

LogicBomb8:
kudos your analogy almost gave me some chills. I'm no longer running i want to learn what you know. I wish to know how to go about it

Please edit out their name from my post you quoted. Kudos on bringing this up. Did you try to reach the bank to inform them about the leak? And please tell me that this from a Microfinance bank and not a major commercial money deposit bank.

LogicBomb8:
kudos your analogy almost gave me some chills. I'm no longer running i want to learn what you know. I wish to know how to go about it

So I've on and off played with an open source Core Banking solution called Fineract/Mifos. Most of my messing around has been with the Savings modules. Gave me very good idea of how Core Banking software works. It's a bit of a challenge installing it. But with patience and engaging with the Dev mailing list you should be able to have it deployed. I'm presently experimenting with developing a custom frontend to access the software much like a regular bank would do with their Temenos24 servers. It's very interesting seeing how all the supposedly "coded" functionality of Core Banking works.

airsaylongcome:


So I've on and off played with an open source Core Banking solution called Fineract/Mifos. Most of my messing around has been with the Savings modules. Gave me very good idea of how Core Banking software works. It's a bit of a challenge installing it. But with patience and engaging with the Dev mailing list you should be able to have it deployed. I'm presently experimenting with developing a custom frontend to access the software much like a regular bank would do with their Temenos24 servers. It's very interesting seeing how all the supposedly "coded" functionality of Core Banking works.

it must feel like seeing how magic works

Reminds me of some stuff i stepped on

Nig banks dont actually care about bugs as long as money no miss first.

Report it and youd be nabbed for ill intentions lol . Thread carefully lmao

Stories!

NEUDUDE:
Nig banks dont actually care about bugs as long as money no miss first.

Report it and youd be nabbed for ill intentions lol . Thread carefully lmao

No mind them.
There are people's sensitive information being displayed which makes it for identity theft and can be probably chained as far as probably financial transaction performed on user's account

Hello
Can we discuss this?

airsaylongcome:


So I've on and off played with an open source Core Banking solution called Fineract/Mifos. Most of my messing around has been with the Savings modules. Gave me very good idea of how Core Banking software works. It's a bit of a challenge installing it. But with patience and engaging with the Dev mailing list you should be able to have it deployed. I'm presently experimenting with developing a custom frontend to access the software much like a regular bank would do with their Temenos24 servers. It's very interesting seeing how all the supposedly "coded" functionality of Core Banking works.

theelowalok:
Hello
Can we discuss this?

Shoot me a mail on dwl9adx4@duck.com

Based



I'll try mine own very soon on an ATM machine using an infected card