By Hilbert Hagedoorn The infosec security researcher from Brazil has discovered a new malicious software package which may be able to steal the credentials of some RICE University MBA students.
The software, dubbed Wunderwaffe, is distributed via the RICE MBA application, and is a trojan, meaning it is designed to infect machines by sending a command and receiving the response.
Wunderflas is a variant of the Wunder malware family, which was first discovered by Hagedeofer last year, and was used by several organizations in the past to compromise RICE MBAs.
RICE university confirmed on December 6th that they have stopped distributing the malware and have disabled its usage on their campuses.
A similar attack is underway against the German research institute of the same name, which has reported its credentials stolen by the Wundershaffe malware.
RIO de Janeiro University has also reported a similar incident to the researchers from Brazil, though it is unclear if the incident was caused by the same source.
The researchers say that the malware is designed for the purpose of stealing the credentials and is capable of executing commands via the internet.
RFI, the research institute that first discovered the malware, says that it is an attack vector that can be used for espionage, but is also able to perform other malicious tasks such as sending emails.
A statement from RFI reads that it has already detected the Wundesafactories on several campuses.
The university says that the malicious software has been detected by the security software firm Symantec, and that it was developed by the Brazilian National Police (PNDI).
The PNDI has not provided a detailed statement, however, nor has it responded to requests for further information.
The Wunderpack, as we’ve already seen, can be downloaded for free from the Google Play store.
In a statement, the RFI said that it’s aware of the attack and has implemented measures to stop the use of the malware.
The group said that they plan to share the details of their findings with the researchers, but that they will also use the information to prevent further incidents.
The malware can be easily detected by looking for a white “F4” on the computer screen, a common indicator of a malware infection.
This usually indicates that the infected machine has been compromised.
We also found that the Rui de Armas university has also experienced a similar attack.
A total of four machines were infected, one of which was a RICE campus.
A separate RICE MBA, the University of Sao Paulo, was also compromised in the attack.
The attack was also successful in Brazil, but unfortunately no data was taken.
The RICE researchers said that this was the first incident in which they were able to infect RICE schools, and it has yet to be determined how the malware was obtained.