Microsoft and law enforcement have announced the court-authorized Takedown of Lumma, a manipulation of prolific information steeler malware found in more than 394,000 Windows PCS worldwide, primarily in Brazil, Europe and the United States.
The tech giant has filed a civil lawsuit and asked federal court to seize 2,300 domains that serve as networks of malware command and control servers. The Department of Justice has also seized five domains used to operate the Lumma infrastructure.
Lumma Password Stealer is found in dangerous games and cracked apps downloaded from the internet. Once infected, the malware steals logins, passwords, credit cards and cryptocurrency wallets from the victim's computers sold to other cybercriminals. Lumma also acts as a backdoor for hackers who want to drop additional malware like ransomware.
Password still malware like Lumma is linked to cyberattacks used to steal large amounts of data from high-tech companies such as Powerschool and Snowflake.