Microsoft has announced a massive cybersecurity crisis due resurfaced Lumma malware, which has hijacked more than 394,000 Windows PCs across the globe. The digital crimes unit at Microsoft discovered this alarming statistic during a surveillance period from March 16 to May 16. The technology company described Lumma as a popular hack tool used largely by cybercriminals, who have used it to carry out a range of financial frauds.
Specifically, Microsoft has joined efforts with law enforcement leaders around the globe. They’re doing the important work of laying lumma, or dismantling the Lumma Stealer project. Through this initiative, law enforcement took control of more than 1,300 domains associated with the kickback malware. From that, 300 domains were targeted due in large part to our collaboration with Europol. The domains they seized are all being redirected to Microsoft sinkholes, which stops the malware in its tracks by preventing it from communicating with infected devices.
Japan’s national cybercrime control center, the Cybercrime Control Institute, played a vigorous rehabilitative role in this operation. Together, they orchestrated the complete suspension of Lumma’s locally rooted infrastructure. Since then, cybersecurity experts have warned that since at least 2022, hackers have been widely purchasing Lumma malware on underground online forums. This trend underscores the ongoing, evolving threat of this malicious software.
Finally, Microsoft pointed out that developers of Lumma malware are always updating and improving its capabilities to increasingly prey on unwitting victims. Then in March 2025, cybercriminals were testing out the most sophisticated phishing campaign yet. They preyed on consumers by duping them into believing they were booking with the legitimate Booking.com online travel agency. Throughout this campaign, Lumma malware was used to trick users.
“Working with law enforcement and industry partners, we have severed communications between the malicious tool and victims.” – Microsoft
The court’s decision leaves Microsoft in charge of Lumma’s infrastructure, giving grace while arming them with the tools to act quickly and effectively against the threat. With this judicial support, Microsoft hopes to hamper the operations of the party responsible for Lumma and help stop the more perceptibly infections future. Remarkably, the malware has since gone on to successfully infect the Windows 11 operating system, further extending its reach into newer technology.
Microsoft, for example, has assumed a leadership role in the global campaign against Lumma malware. Crime Prevention Through Environmental Design The company’s proactive approach goes further than just technical interventions. This unified front is paramount to winning the battle against cybercrime.
Leave a Reply