Microsoft has warned against a new criminal cyber threat posed by Lumma malware. This malware has affected at least 394,415 Windows computers globally during the period from March 16 to May 16 of this year. The tech behemoth presented Lumma as a popular cybercrime hacking tool used by criminals to perpetrate mostly financial crimes. The company’s digital crimes unit collaborated with law enforcement officials worldwide to dismantle the Lumma Stealer project, marking a critical step in combating this pervasive issue.
Microsoft had an extraordinary take-their-ball-and-go-home moment and confiscated more than 1,300 domains associated with Lumma. With the support of Europol, they were able to act on roughly 300 of those domains. These domains will be redirected to Microsoft sinkholes to stop any additional malicious activity associated with the malware. Following up, Japan’s cybercrime control center bolstered the operation. Yet these strategies worked hand-in-glove with the efforts to suspend Lumma’s local infrastructure.
“Working with law enforcement and industry partners, we have severed communications between the malicious tool and victims,” Microsoft stated, emphasizing their commitment to tackling cyber threats.
This particular Lumma malware has been for sale on dark web forums since at least 2022. Photo by Kelly Sikkema on Unsplash The developers are constantly improving its capabilities. This constant development is a legitimate threat to Windows 11 users. Remember, just this past March 2025, Microsoft revealed a massive phishing campaign. Scammers misled people by posing as the Booking.com digital travel agency. Throughout this campaign, Lumma malware was used to trick victims.
A recent court order has given Microsoft control over the infrastructure that powers Lumma. This allows them to quickly act to inundate the malware’s ability to spread. This legal underpinning has given them a valuable framework within which they can operate effectively to maximize the disruption they levy against cybercriminals’ activities.
Yet even with such good legislative steps, the danger that Lumma still exists and is still changing. Microsoft will continue to be watchful and active on a global stage to combat these kinds of cybersecurity menaces.