Microsoft Takes Legal Action Against Canada-Based Info-Stealing Malware Lumma Stealer

() -Microsoft said on Wednesday its Digital Crimes Unit (DCU) filed a legal action against Lumma Stealer last week, after it found nearly 400,000 Windows computers globally infected by the information-stealing malware in the past two months.

Lumma is capable of stealing data from various browsers and applications, such as cryptocurrency wallets, and installing other malware, the company said in a blog.

Microsoft’s DCU helped in the “takedown, suspension, and blocking of malicious domains that formed the backbone of Lumma’s infrastructure,” via a court order from the U.S. District Court of the Northern District of Georgia, the blog said.

The U.S. Department of Justice said on Wednesday it has seized five internet domains used by malicious cyber actors to operate the LummaC2 information-stealing malware service. The FBI’s Dallas Field Office is investigating the case.

Microsoft highlighted in an additional blog post about the malware that “the development and toughness of Lumma Stealer reflect wider changes in cybercrime trends and emphasize the importance of implementing multi-layered protections and fostering industry cooperation to combat these risks.”

(Reported by Juby Babu in Mexico City; Edited by Alan Barona)