EN
  • Cyber stability
  • Secops
  • Risks management
  • Digital transformation
  • Digital Sovereignty
  • Cybercrime
  • Industry and OT
  • Fraud
  • Digital identity
  • Cyber +
    • International Operation Dismantles Lumma Infostealer Infrastructure
    • Home
    • Fraud
    • International Operation Dismantles Lumma Infostealer Infrastructure

    International Operation Dismantles Lumma Infostealer Infrastructure

    Written by
    The Editorial Team
    05.23.25
    Fraud
    01
    MIN
    International Operation Dismantles Lumma Infostealer Infrastructure
    International Operation Dismantles Lumma Infostealer Infrastructure
    International Operation Dismantles Lumma Infostealer Infrastructure
    Image Backdoor Identified on Android Tablets
    Fraud
    02.19.26 Fraud
    Next article
    Backdoor Identified on Android Tablets
    Read
    01
    MIN
    Image European police forces dismantle major credit card fraud network
    Fraud
    11.07.25 Fraud
    Next article
    European police forces dismantle major credit card fraud network
    Read
    01
    MIN
    Image Dismantling of BidenCash, a Stolen Credit Card Marketplace
    Fraud
    06.11.25 Fraud
    Next article
    Dismantling of BidenCash, a Stolen Credit Card Marketplace
    Read
    01
    MIN
    Image Online Fraud: Nigeria Sentences Nine Chinese Nationals to Prison
    Fraud
    06.11.25 Fraud
    Next article
    Online Fraud: Nigeria Sentences Nine Chinese Nationals to Prison
    Read
    01
    MIN
    The United States, European Union, Japan, Microsoft, and cybersecurity firms took part in this coordinated offensive.

    Members of an international police and technology coalition announced on May 21, 2025, that they had jointly dismantled the infrastructure of the Lumma infostealer. The operation involved the FBI, the U.S. Department of Justice, Europol, Japan’s Cybercrime Control Center, Microsoft, and several cybersecurity companies.

    In the United States, the judiciary enabled Microsoft to take down, suspend, and block around 2,300 malicious domains that formed the backbone of Lumma’s infrastructure. The tech giant also worked with authorities in Japan and the EU to cut access to the infostealer in those regions.

    The FBI has been investigating Lumma since September 2023 and identified approximately 10 million infections, making it one of the most widespread infostealers worldwide. It was developed by “Shamel,” a cybercriminal based in Russia, who has been marketing it since at least 2022. According to Brett Leatherman, a senior FBI official, Lumma’s ease of use has allowed “people with very little technical knowledge to very easily become cybercriminal actors.”

    The Editorial Team
    05.23.25
    Articles by the same author:
    1
    03.06.26 Risks management
    0-day attacks increasingly target the private sector
    Read
    01
    MIN
    2
    03.06.26 Cybercrime
    The leader of the Phobos ransomware gang pleads guilty before U.S. justice
    Read
    01
    MIN
    3
    03.03.26 Cyber stability
    NATO Authorizes the Use of iPhones for Classified Data
    Read
    02
    MIN
    4
    03.03.26 Cyber +
    The United States Exclude Anthropic from Federal Agencies
    Read
    02
    MIN
    Image Backdoor Identified on Android Tablets
    Fraud
    02.19.26 Fraud
    Next article
    Backdoor Identified on Android Tablets
    Read
    01
    MIN
    Image European police forces dismantle major credit card fraud network
    Fraud
    11.07.25 Fraud
    Next article
    European police forces dismantle major credit card fraud network
    Read
    01
    MIN
    Image Dismantling of BidenCash, a Stolen Credit Card Marketplace
    Fraud
    06.11.25 Fraud
    Next article
    Dismantling of BidenCash, a Stolen Credit Card Marketplace
    Read
    01
    MIN
    Image Online Fraud: Nigeria Sentences Nine Chinese Nationals to Prison
    Fraud
    06.11.25 Fraud
    Next article
    Online Fraud: Nigeria Sentences Nine Chinese Nationals to Prison
    Read
    01
    MIN
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.