Once-hobbled Lumma Stealer is back with lures that are hard to resist

Lumma Stealer, an infostealer that infected hundreds of thousands of Windows computers, has resurfaced with hard-to-detect attacks that steal credentials and sensitive files. Originating in Russian-speaking cybercrime forums, Lumma offers lure sites with free cracked software, games, and pirated movies, making it a popular tool for various crime groups. Despite a major law enforcement takedown in 2025, Lumma has rebuilt its infrastructure and continues to spread globally, using social engineering lures like "ClickFix" to trick users into infecting their machines. The malware's resurgence highlights the challenges of combating sophisticated cyber threats.