A malware-as-a-service operation used to steal passwords and sensitive data has been sabotaged by other cyber-criminals.

Explore a groundbreaking investigation into Lumma affiliates: uncover their tools, tactics, scams, and integration in the cybercriminal ecosystem. Essential reading for defenders.

Explore a groundbreaking investigation into Lumma affiliates: uncover their tools, tactics, scams, and integration in the cybercriminal ecosystem. Essential reading for defenders.

Summary In January, Netskope Threat Labs observed a new malware campaign using fake CAPTCHAs to deliver Lumma Stealer. Lumma is a malware that works in

Microsoft has identified a complex attack chain based on malvertising that has distributed Lumma and other infostealers to enterprise and consumer PC users. This campaign has infected 1 million Windows users. The campaign uses GitHub to host the malware and is considered a persistent threat. The impacts include the theft of sensitive information and the compromise of systems. This campaign is likely not the last of its kind.

Tausende Domains, Steam-Profile und Telegram-Kanäle nutzten die Malware-Betreiber – das ist vorerst vorbei. Europol lobt die Zusammenarbeit mit Microsoft.

Microsoft et Europol ont uni leurs forces pour démanteler Lumma Stealer, le redoutable logiciel malveillant. Une victoire majeure pour la cybersécurité mondiale, et un coup dur pour les cybercriminels...

Empowering the world’s largest organizations to manage and protect their mission-critical networks.

Cybersecurity researchers are warning of a new campaign that leverages cracked versions of software as a lure to distribute information stealers like Lumma and ACR Stealer. The AhnLab Security Intelligence Center (ASEC) said it has observed a spike in the distribution volume of ACR Stealer since January 2025. A notable aspect of the stealer malware is the use of a technique called dead drop

Summary In January, Netskope Threat Labs observed a new malware campaign using fake CAPTCHAs to deliver Lumma Stealer. Lumma is a malware that works in

Security experts have warned Windows users of a new data-stealing campaign that uses a dangerous CAPTCHA test to bypass security measures, grab your password, and more.