Microsoft takes down Lumma malware after it hit nearly 400,000 Windows PCs globally. Lumma was so dangerous it allowed criminals to hold educational institutions ransom, wipe out bank accounts.

The Lumma malware was a favorite hacking tool used by bad actors, Microsoft said in the post. Hackers used the malware to steal passwords, credit cards, bank accounts and cryptocurrency wallets.

A global law enforcement operation supported by Microsoft Corp. today disrupted the infrastructure behind Lumma, a prominent malware-as-a-service tool responsible for widespread information theft.

Microsoft says Lumma Stealer is a "malware as a service" that can steal data from browsers, cryptocurrency wallets and other applications by installing malware. The tech firm from March 15 through ...

Its digital crimes unit discovered more than 394,000 Windows computers were infected by the Lumma malware worldwide between March 16 through May 16.

This time, Microsoft reports that the Lumma info stealer created by the notorious Russian malware developer known as Shamel infected over 394,000 PCs between March 16 and May 16, 2025.

Malware-as-a-Service (MaaS) Hits 390K+ PCs in 3 Months as Microsoft Fights Back Lumma Stealer is software made to secretly steal personal and organizational information from computers.

He called Lumma a link in the cyber crime supply chain. Between March and May, Microsoft identified more than 394,000 Windows computers across the world that had been infected by Lumma malware.