Microsoft takes legal action against infostealer Lumma

Microsoft’s Legal Action Against Lumma Stealer Malware

Microsoft has launched a significant legal offensive against the Lumma Stealer malware, a potent information-stealing tool impacting thousands of computers globally. In a May 21 blog post, the tech giant detailed its collaboration with international law enforcement agencies, including the US Department of Justice, Europol’s European Cybercrime Center, and Japan’s Cybercrime Control Center, to dismantle Lumma’s infrastructure. This coordinated effort resulted in the takedown, blocking, or suspension of nearly 2,300 websites crucial to Lumma’s operations. The seizure of Lumma’s central command structure further crippled its capabilities.

Lumma, actively sold on underground forums since 2022 and subject to multiple upgrades, is capable of stealing a wide range of sensitive data, including passwords, credit card details, bank account information, and cryptocurrency wallet information. Between March 16 and May 16, Microsoft identified over 394,000 Windows computers infected with the malware. The company worked diligently with law enforcement and cybersecurity firms to disrupt communication between infected devices and the malware’s command-and-control servers.

The Lumma case highlights a concerning trend in the rise of malicious crypto-stealing software, often termed “crypto drainers.” These tools are frequently deployed through phishing sites, malicious extensions, and fraudulent airdrops. The recent example of Chinese printer manufacturer Procolored inadvertently distributing Bitcoin-stealing malware alongside its drivers, resulting in approximately $953,000 in cryptocurrency losses, underscores the pervasive threat. Reports indicate that crypto drainers are increasingly being offered as Software-as-a-Service (SaaS) products, making them accessible even to less technically skilled cybercriminals.

The scale of the problem is substantial. Chainalysis reported nearly $51 billion in cryptocurrency losses due to fraudulent activities in 2024, while the FBI reported that Americans lost roughly $9.3 billion to crypto scams and frauds during the same year, with individuals over 60 proving particularly vulnerable. North Korean hackers alone are estimated to have stolen nearly $3 billion in cryptocurrencies between 2017 and 2023, demonstrating the sophistication and persistence of these criminal networks. Microsoft’s decisive action against Lumma serves as a crucial step in combating this escalating threat to digital security.

Leave a Reply

Your email address will not be published. Required fields are marked *