Microsoft has filed a lawsuit against the information – stealing malware Lumma Stealer. Here’s a detailed account:
The Discovery of Infections: From March 15 to May 16, 2025, Microsoft’s Digital Crimes Unit (DCU) identified more than 394,000 Windows computers worldwide infected with the Lumma malware.
The Nature of Lumma Stealer: Lumma is a “malware – as – a – service” that can steal data from browsers, cryptocurrency wallets, and other applications by installing malware. It can harvest passwords, bank account logins, credit card numbers, and crypto wallet data. Since its appearance in 2022, it has been upgraded several times, becoming harder to detect and easier to use.
The Legal Action and Cooperation: On May 13, 2025, Microsoft filed a federal lawsuit against Lumma Stealer in the U.S. District Court for the Northern District of Georgia. The company, in collaboration with cybersecurity firms and law enforcement, aimed to block communications between infected systems and the malware’s control servers. The U.S. Department of Justice also took action, seizing five internet domains used by malicious cyber – actors to operate the Lumma malware service and disrupting marketplaces where the tool was sold. Additionally, Europol’s European Cybercrime Center and Japan’s Cybercrime Control Center assisted in suspending the local infrastructure used to spread Lumma within their jurisdictions.
The Court – Ordered Disruptions: A federal court in Georgia granted Microsoft’s DCU permission to take down, block, or suspend nearly 2,300 websites linked to Lumma’s infrastructure, which formed the backbone of its operations and were used by hackers to manage the malware and collect stolen data.
Microsoft’s action against Lumma Stealer is significant in the fight against cybercrime, especially as the threat of malware – related crypto – theft continues to grow.
Related topic:
