Microsoft dismantles the Lumma Stealer malware network, a major threat in infostealer malware, with global law enforcement, curbing data breaches worldwide.

This time, Microsoft reports that the Lumma info stealer created by the notorious Russian malware developer known as Shamel infected over 394,000 PCs between March 16 and May 16, 2025.

Microsoft and law enforcement have announced a court-authorized takedown of Lumma, a prolific info-stealer malware operation found on more than 394,000 Windows PCs globally, mostly in Brazil ...

Microsoft says its Digital Crimes Unit (DCU) successfully disrupted the server infrastructure behind Lumma Stealer, a malware-as-a-service (MaaS) operation that infected hundreds of thousands of ...

Microsoft, along with a consortium of partners, has seized and disrupted a significant part of the Lumma malware-as-a-service network used to steal data and funds. Search the TechTarget Network.

Microsoft and law enforcement have announced a court-authorized takedown of Lumma, a prolific info-stealer malware operation found on more than 394,000 Windows PCs globally, mostly in Brazil, Europe, ...

Authorities carry out global takedown of infostealer used by cybercriminals Authorities, along with tech companies including Microsoft and Cloudflare, say they’ve disrupted Lumma.

A global law enforcement operation supported by Microsoft Corp. today disrupted the infrastructure behind Lumma, a prominent malware-as-a-service tool responsible for widespread information theft ...

Microsoft’s Digital Crimes Unit filed a legal action against Lumma Stealer last week, after it found nearly 400,000 Windows computers globally infected by the information-stealing malware in … ...

Microsoft says that Lumma has been sold via underground forums since 2022 and that it has undergone multiple upgrades since its launch. Domains seized by Microsoft. Source: Microsoft Blog.

A global strike on a malware-as-a-service giant. LummaC2, also known simply as Lumma, is a sophisticated Malware-as-a-Service (MaaS) sold on underground forums since 2022. It enables threat actors ...