Marcel SIneM(S)US<p>Comeback von <a href="https://social.tchncs.de/tags/Lumma" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Lumma</span></a> und NoName057(16): <a href="https://social.tchncs.de/tags/Cybercrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cybercrime</span></a>-Zerschlagung misslungen | Security <a href="https://www.heise.de/news/Comeback-von-Lumma-und-NoName057-16-Cybercrime-Zerschlagung-misslungen-10498191.html" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">heise.de/news/Comeback-von-Lum</span><span class="invisible">ma-und-NoName057-16-Cybercrime-Zerschlagung-misslungen-10498191.html</span></a> <a href="https://social.tchncs.de/tags/Malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Malware</span></a> <a href="https://social.tchncs.de/tags/Ransomware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ransomware</span></a> <a href="https://social.tchncs.de/tags/NoName05716" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NoName05716</span></a></p>
Administered by:
#lumma
1 post1 participant0 posts today
2025-07-15 (Tuesday): #LummaStealer infection with #SecTopRAT.
A #pcap of the #Lumma traffic and #SecTop #RAT activity, the #malware/artifacts from an infection, and the associated IOCs are available at https://www.malware-traffic-analysis.net/2025/07/15/index.html
Leaked Shellter Elite Tool Now Fueling Infostealer Attacks Worldwide https://hackread.com/leaked-shellter-elite-tool-infostealer-attacks-worldwide/ #Cybersecurity #ShellterElite #CyberAttacks #ArechClient2 #Rhadamanthys #CyberAttack #Infostealer #CyberCrime #Security #security #Lumma
Hackread - Latest Cybersecurity, Hacking News, Tech, AI & Crypto · Leaked Shellter Elite Tool Now Enabling Infostealer Attacks WorldwideFollow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread
Leaked Shellter Elite Tool Now Fueling Infostealer Attacks Worldwide – Source:hackread.com https://ciso2ciso.com/leaked-shellter-elite-tool-now-fueling-infostealer-attacks-worldwide-sourcehackread-com/ #1CyberSecurityNewsPost #CyberSecurityNews #cybersecurity #ShellterElite #ArechClient2 #CyberAttacks #Rhadamanthys #CyberAttack #Infostealer #CyberCrime #Hackread #security #Lumma
CISO2CISO.COM & CYBER SECURITY GROUP · Leaked Shellter Elite Tool Now Fueling Infostealer Attacks Worldwide – Source:hackread.comSource: hackread.com - Author: Waqas. A new report details how the advanced hacking tool Shellter Elite was leaked and is now being used by cybercrimin
2025-07-02 (Wednesday): Another #LummaStealer infection with follow-up #Rsockstun #malware.
The #Lumma Stealer infection uses a password-protected 7-zip archive, a NullSoft installer, and #AutoItv3.
Malware samples, a #pcap and some IOCs are available at https://www.malware-traffic-analysis.net/2025/07/02/index.html
Today I learned that by shifting .lat you can end up with .fun and that when you end up with a Lumma dead drop resolver, you don't know which is the right TLD...
2025-06-26 (Thursday): #LummaStealer infection leads to follow-up loader that retrieves a pen test tool hosted on Github and configures it as #malware.
A #pcap of the infection traffic, the associated malware, and IOCs are available at: https://www.malware-traffic-analysis.net/2025/06/26/index.html
After the #Lumma Stealer takedown a few weeks ago, threat actors moved away from Cloudflare to AS47105 Vault Dweller OU 
with Finnish upstream Creanova 
195.82.146.193:443 195.82.146.221:443 195.82.146.223:443
Not only Lumma botnet C2s are hosted there as ThreatFox tells 
https://threatfox.abuse.ch/asn/47105/
threatfox.abuse.chThreatFox | Checking your browser
Lumma infostealer takedown may have inflicted only a flesh wound as crew keeps pinching and selling data – Source: go.theregister.com https://ciso2ciso.com/lumma-infostealer-takedown-may-have-inflicted-only-a-flesh-wound-as-crew-keeps-pinching-and-selling-data-source-go-theregister-com/ #rssfeedpostgeneratorecho #TheRegisterSecurity #CyberSecurityNews #TheRegister #Lumma
CISO2CISO.COM & CYBER SECURITY GROUP · Lumma infostealer takedown may have inflicted only a flesh wound as crew keeps pinching and selling data – Source: go.theregister.comSource: go.theregister.com - Author: Brandon Vigliarolo Infosec In Brief Despite last week’s FBI announcement that it helped to take down the crew behind
Researchers from #CheckPoint confirmed that despite last week’s FBI announcement that it helped to take down the crew behind the #Lumma infostealer, the malware continues to operate. The group's command and control servers remain operational.
https://www.theregister.com/2025/06/02/security_news_roundup/
The Register · Lumma infostealer takedown may have inflicted only a flesh wound as crew keeps pinching and selling data
#PorSiTeLoPerdiste Microsoft descubre un malware que infectó 394.000 equipos en todo el planeta, Colombia entre los países afectados https://www.enter.co/empresas/seguridad/microsoft-descubre-un-malware-que-infecto-394-000-equipos-en-todo-el-planeta-colombia-entre-los-paises-afectados/?utm_source=dlvr.it&utm_medium=mastodon #Seguridad #Lumma #LummaStealer
Authorities Carry Out Elaborate Global #Takedown of #Infostealer Heavily Used by #Cybercriminals
US, European, and Japanese authorities, along with tech companies including #Microsoft and #Cloudflare , say they’ve disrupted #Lumma , an #infostealer popular with criminal gangs.
#privacy #security
https://www.wired.com/story/lumma-stealer-takedown-disrupted/
WIRED · Authorities Carry Out Elaborate Global Takedown of Infostealer Heavily Used by Cybercriminals
it.slashdot.orgMicrosoft Says 394,000 Windows Computers Infected By Lumma Malware Globally - SlashdotAn anonymous reader quotes a report from CNBC: Microsoft said Wednesday that it broke down the Lumma Stealer malware project with the help of law enforcement officials across the globe. The tech giant said in a blog post that its digital crimes unit discovered more than 394,000 Windows computers wer...