Microsoft Takes Action Against Lumma Stealer

On Wednesday, Microsoft announced it initiated legal proceedings against Lumma Stealer the previous week. This came about after the company discovered that nearly 400,000 Windows computers had been infected with information-stealing malware over the past couple of months.

Lumma Stealer has the capability to extract data from numerous browsers and applications, including cryptocurrency wallets. It can also install additional malware, according to information shared on Microsoft’s blog.

Microsoft’s Digital Crimes Unit has been proactive, working to “takedown, halt, and block the malicious domains that supported the Lumma infrastructure,” following a court order from the U.S. District Court for the Northern District of Georgia.

Additionally, the U.S. Department of Justice reported that five internet domains used by malicious actors to operate the malware services linked to Lumma Stealer have been seized. The FBI’s Dallas Field Office is currently investigating the situation.

“The growth and persistence of Lumma Stealer underscore the broader evolution of cybercrime,” Microsoft noted in another blog post. The company emphasized the importance of layered defenses and industry cooperation to address these ongoing threats.