Cybersecurity Alert: Beware of Session-Stealing Malware That Bypasses OTP and MFA Authentication

The Center for Digital Innovation (CDI), Walailak University, would like to alert students, faculty members, and staff to a rapidly emerging cybersecurity threat involving Infostealer malware capable of stealing session tokens from users’ devices. This attack enables cybercriminals to impersonate legitimate users and gain unauthorized access to online services without requiring One-Time Passwords (OTP) or Multi-Factor Authentication (MFA) verification.

While strong passwords and MFA remain essential security measures, attackers have developed sophisticated techniques that target users’ devices directly. These attacks are commonly delivered through phishing emails, malicious links, infected attachments, pirated software, or untrusted browser extensions.

Once a victim opens a malicious file or clicks a harmful link, the malware silently extracts browser cookies and session tokens. These tokens are used by websites and applications to recognize authenticated users who have already completed the login and MFA process. By stealing these tokens, attackers can access user accounts and university systems without triggering any OTP request or security notification.

To reduce the risk of compromise, CDI strongly recommends the following security practices:

• Avoid downloading or installing cracked software, pirated applications, games, or untrusted browser extensions.

• Exercise caution when opening emails, attachments, or links, especially messages that request immediate action, password resets, or account verification.

• Access university services only through official websites and type the URL directly into your browser whenever possible.

• Always sign out of university systems after use, particularly when using shared or public computers.

• Regularly clear browser cookies and browsing data.

• Keep your operating system, web browser, and antivirus software updated with the latest security patches.

If you suspect that you have clicked a malicious link, downloaded a suspicious file, or noticed unusual activity on your university account, please change your password immediately and contact the CDT Helpdesk as soon as possible for assistance.

CDT Helpdesk
Tel: +66 7567 3400
Internal: 73400
Facebook: wu.cdi

The Center for Digital Innovation encourages all members of the university community to remain vigilant and stay informed about cybersecurity threats. By practicing good cyber hygiene and following security recommendations, we can work together to protect university information systems and reduce the risk of cyberattacks.

Center for Digital Innovation (CDI)
Walailak University

Post Views: 7