NPM index that attempt to collect sensitive host and network data and send it to a Discord webhook controlled by the threat actor.

The bustling enterprise, recently disrupted by a global effort including ESET, is notorious for going after all manner of ...

The malware often hides behind fake CAPTCHAs and has been used to commit financial fraud. Microsoft took down 2,300 domains that ran it and updated Defender to identify it.

Between March and May 2025, Microsoft found more than 394,000 computers infected with Lumma Stealer worldwide. Over 1,300 of ...

The DanaBot botnet ensnared over 300,000 devices and caused more than $50 million in damages before being disrupted.

Microsoft has led a global takedown of Lumma Stealer, a long-running malware-as-a-service network. Microsoft worked with law ...

A wave of malware attacks targeting macOS users is exploiting trust in Ledger Live, a popular crypto wallet management app.

DoJ disrupts DanaBot malware after 300K infections and $50M damage; 16 charged in Russia-linked cybercrime ring.

Lumma, a Malware-as-a-Service (MaaS) marketed on underground forums since 2022, specializes in stealing passwords, banking ...

Microsoft, the U.S. Justice Department, Europol and Japan’s Cybercrime Control Center are targeting the Lumma Stealer malware ...

Microsoft says its Digital Crimes Unit (DCU) successfully disrupted the server infrastructure behind Lumma Stealer, a malware ...

Microsoft and law enforcement have announced a court-authorized takedown of Lumma, a prolific info-stealer malware operation ...