At least 394,000 computers with the Windows operating system worldwide were infected with the malignant program (‘malware’) Lumma and international authorities are trying to dismantle the cybercrime plot that operates it, Microsoft said.
Computers were infected between March 16 and May 16 by Lumma Stealer, one of the “favorite” tools of pirates to steal data such as passwords, bank accounts or cryptocurrency portfolios, which they then use to claim rescue or attack essential services, Microsoft said in their blog.
The technological giant explained that on May 13 his unit against digital crimes filed a legal action in a court in Georgia (EU), which allowed him to “seize and facilitate the fall, suspension and blockade of some 2,300 domains” that formed “the lumma infrastructure”.
The US Department of Justice in parallel, “seized the central lumma command structure and interrupted the markets where the tool was sold to other cybercriminals,” while the authorities of Europe and Japan helped to suspend local program infrastructures of the program.
The propagation of the virus was concentrated mainly in the European continent, according to a map shared by Microsoft in its blog, and in which they appear in Red Germany, Poland, the Netherlands and other nearby countries, as well as part of Spain and Portugal, but also in the east of EU, Brazil and Mexico.
“Working with the authorities and partners of the sector, we have cut the communications between the malicious tool and the victims,” Microsoft said, implying that infected computers are no longer at risk.
The company has mentioned an example of how this program spread in the month of March, with a campaign of impersonation of identity that made users believe that they were contacted by the Booking.com holiday reserve agency, and where Pirates committed “fraud and robbery” of data with lumma.
With EFE information.
Follow business information and today in Forbes Mexico
Do you like to inform yourself for Google News? Follow our showcase to have the best stories
