VideoLumma Stealer: Down for the count=================================The bustling cybercrime enterprise has been dealt a significant blow in a global operation that relied on the expertise of ESET and other technology companies [](/en/our-experts/editor/ ‘Editor’) [**Editor**](/en/our-experts/editor/ ‘Editor’)22 May 2025 A global disruption operation has dealt a significant blow to Lumma Stealer, one of the most prolific malware-as-a-service (MaaS) operations. The disruption effort, led by Microsoft and involving technical analysis by ESET researchers, targeted the infostealer’s infrastructure, including all known C-&C servers from the past year, and ultimately making the threat largely inoperative.What else is there to know about the operation, as well as about the inner workings of the prolific info-stealer malware, which went after all manner of sensitive data, including passwords, credit card numbers and cryptowallet info, and got into the [top 10 infostealers detected by ESET products](https://web-assets.esetstatic.com/wls/en/papers/threat-reports/eset-threat-report-h22024.pdf#page=7) in the second half of 2024? Watch the video with ESET Chief Security Evangelist [Tony Anscombe](https://www.welivesecurity.com/en/our-experts/tony-anscombe/) to find out and make sure to read [this blogpost](https://www.welivesecurity.com/en/eset-research/eset-takes-part-global-operation-disrupt-lumma-stealer/).Connect with us on [Facebook](https://www.facebook.com/eset), [X](https://x.com/ESET), [LinkedIn](https://www.linkedin.com/company/eset/) and [Instagram](https://www.instagram.com/eset/). *** ** * ** ***Let us keep youup to date—————————–Sign up for our newsletters Ukraine Crisis newsletter Regular weekly newsletter Subscribe #### Related Articles*** ** * ** ***[VideoDanabot under the microscopeVideoDanabot under the microscope](/en/videos/danabot-microscope/ ‘Danabot under the microscope’) *** ** * ** ***[VideoThe who, where, and how of APT attacks in Q4 2024–Q1 2025VideoThe who, where, and how of APT attacks in Q4 2024–Q1 2025](/en/videos/who-where-how-apt-attacks-q4-2024-q1-2025/ ‘The who, where, and how of APT attacks in Q4 2024-Q1 2025’) *** ** * ** ***[VideoSednit abuses XSS flaws to hit gov’t entities, defense companiesVideoSednit abuses XSS flaws to hit gov’t entities, defense companies](/en/videos/sednit-xss-govt-entities-defense-companies/ ‘Sednit abuses XSS flaws to hit gov’t entities, defense companies’)  ### Similar Articles[ESET researchESET takes part in global operation to disrupt Lumma Stealer](/en/eset-research/eset-takes-part-global-operation-disrupt-lumma-stealer/ ‘ESET takes part in global operation to disrupt Lumma Stealer’)*** ** * ** ***### Share Article[](https://www.facebook.com/sharer/sharer.php?u=https://www.welivesecurity.com/en/videos/lumma-stealer-disruption/ ‘Facebook’) [](https://www.linkedin.com/shareArticle?mini=true&url=https://www.welivesecurity.com/en/videos/lumma-stealer-disruption/ ‘LinkedIn’) [](https://twitter.com/intent/tweet?url=https://www.welivesecurity.com/en/videos/lumma-stealer-disruption/ ‘Twitter’) [](mailto:?&subject=I wanted you to see this site&body=https://www.welivesecurity.com/en/videos/lumma-stealer-disruption/ ‘mail’) [](https://www.welivesecurity.com/en/videos/lumma-stealer-disruption/ ‘copy’) ### Discussion
Related Tags:
LummaStealer
GruesomeLarch
FROZENLAKE
Forest Blizzard
NAICS: 54 – Professional
Scientific
Technical Services
NAICS: 541 – Professional
Scientific
Technical Services
NAICS: 52 – Finance And Insurance
NAICS: 518 – Computing Infrastructure Providers
Data Processing
Web Hosting
Related Services
NAICS: 523 – Securities
Commodity Contracts
Other Financial Investments And Related Activities
Associated Indicators: