- The Department of Justice announced the taking of multiple domains used by Lumma Stealer
- Infosteener is linked to some of the largest cyber attacks in recent times.
- Malware caused millions of dollars in damage.
The United States Department of Justice, together with the FBI and Microsoft, interrupted Lumma Stealer’s operations, one of the largest malware variants that steal information.
In a press release published on the website of the DOJ earlier this week, it was explained that the law enforcement agencies confiscated five Internet domains that were used to implement Lummac2. Threat actors tried to relocate their operations and establish three new domains, which were also quickly collected by the Department of Justice.
In addition, Microsoft independently eliminated 2,300 additional Internet domains linked to the criminal activities of LUMMAC2.
High profile attacks
Lumma Stealer is a popular Infoptealer that takes confidential information, such as login credentials, automatic browser approach information and cryptocurrency wallet data. In general, it is distributed through malicious websites and phishing campaigns, and was seen in numerous high profile cyber attacks. The seized domains were used by different cybercriminals to access, and then deploy, infants
The FBI said that the malware was used in at least 1.7 million cases since the late 2023, and resulted in approximately 10 million infections. These infections resulted in losses of more than $ 36 million only in 2023. The Department of Justice now offers a $ 10 million reward for information on cyber attacks against the infrastructure of the United States, made by actors of threats sponsored by the State.
Lumma was involved in many cases high profile cybercriminals, including the attack against Schneider Electric that occurred in early November 2024. In that case, Hudson Rock researchers found, criminals behind the attack claimed to have stolen “critical data”, including projects, problems and accessories, together with 400,000 traces of user data, a total of more than 40GB compressed of compressed data.
Apparently, the infant of infants was also used to steal credentials that were then used to break into the storage accounts of people’s snow drinks, which caused one of the largest supply chain attacks in recent times.
Through The registration
