The malware often hides behind fake CAPTCHAs and has been used to commit financial fraud. Microsoft took down 2,300 domains that ran it and updated Defender to identify it.

Between March and May 2025, Microsoft found more than 394,000 computers infected with Lumma Stealer worldwide. Over 1,300 of the seized domains will now redirect to Microsoft "sinkholes," which are ...

Eight African countries are among the world's most targeted countries for a tool called FakeUpdates, reports Check Point.

Uncle Sam on Thursday unsealed criminal charges and a civil forfeiture case against a Russian national accused of leading the ...

Initially spotted in May 2018 by researchers at the email security firm Proofpoint, DanaBot is a malware-as-a-service ...

Microsoft says its Digital Crimes Unit (DCU) successfully disrupted the server infrastructure behind Lumma Stealer, a malware ...

Microsoft has sounded the alarm on a pervasive piece of malware that has already infected hundreds of thousands of PCs. A few ...

Microsoft and law enforcement have announced a court-authorized takedown of Lumma, a prolific info-stealer malware operation ...

Malware campaign exploiting TikTok’s popularity has been observed using social engineering to spread Vidar and StealC ...

The DoJ announced seizing multiple domains used by Lumma Stealer The infostealer is linked to some of the biggest ...

Digital Crimes Unit brought suit on May 13 against Lumma Stealer, an information-stealing malware used by hundreds of threat ...

Microsoft and Europol dismantled Lumma’s 2,300-domain C2 network after 10M infections tied to credential and crypto theft.