Microsoft to Block Over 2,000 Lumma Stealer Websites

Reading Time: 2 minutes
Microsoft will block over 2,000 websites linked to the Lumma Stealer malware
Microsoft disclosed it had received permission from a U.S. court to disrupt the websites
The tech giant has also collaborated with law enforcement agencies to cripple the malware project

Tech heavyweight Microsoft has disclosed that a U.S. court has allowed it to block or seize over 2,000 websites linked to the Lumma Stealer malware. It also revealed that it’s working with law enforcement agencies to cripple and shut down the scam project’s operations, adding that the U.S. Department of Justice (DOJ) has already captured the malware project’s key command structure and infiltrated its distribution networks. Microsoft said more than 390,000 computers are infected by the malware, indicating that more computers may be infected and funds siphoned from victims.

A Tool to Target Crypto Wallets and Bank Accounts

According to the tech giant, Lumma Stealer is the “leading tool used to indiscriminately steal sensitive personal and organizational information to facilitate cybercrime.” It noted that scammers use the malware to target bank accounts, credit cards, cryptocurrency wallets, and passwords. 

The malware has in the past enabled threat actors to disrupt key services, drain victims’ bank accounts, and “hold schools for ransom.” Led by Microsoft’s Digital Crimes Unit (DCU), the tech heavyweight said that the targeted websites form the backbone of the malware’s operations. 

Microsoft said that Europe and Japan have assisted in suspending the malware’s local infrastructure. It also revealed that it seized over 1,300 domains linked to the Lumma Stealer, with more expected to be “redirected to Microsoft sinkholes.” 

Blocking Revenue Streams Weakens Lumma Stealer 

The tech giant said the move is designed to weaken the effectiveness of the malware, slow down the speed of launching new attacks, and reduce “illicit profits by cutting a major revenue stream.”

Microsoft’s action comes as malicious actors in the crypto scene are devising new tactics to lure victims and steal more funds. Some of the latest tactics include purchasing abandoned DeFi websites and offering cracked versions of leading software for free.

With Microsoft taking action against threat actors, it remains to be seen whether other tech firms like Meta and Google will follow suit.

The post Microsoft to Block Over 2,000 Lumma Stealer Websites appeared first on FullyCrypto.

Leave a Reply

Your email address will not be published. Required fields are marked *

Filed under: Bitcoin - @ May 25, 2025 10:18 am