FlagThis

Lumma is a sophisticated information stealer available as Malware-as-a-Service (MaaS) on Russian-speaking forums and Telegram. It targets Windows systems to steal credentials, cryptocurrency wallets, browser data, and 2FA details using various techniques to avoid detection. It offers tiered subscription plans with features such as binary morphing and server-side data decryption. The stealer is actively used in campaigns involving phishing, malvertising, and fake software updates targeting manufacturing, transportation, gamers, cracked software users, and crypto enthusiasts, making it a dominant force in the info-stealer market.

Mark Sokolovsky, the operator of the Raccoon Stealer malware-as-a-service (MaaS) operation, has been sentenced to five years in prison. Raccoon Stealer has been a significant malware platform since 2019, enabling cybercriminals to steal sensitive data. The sentencing highlights efforts to combat international cybercrime and bring perpetrators to justice. This should act as a deterrent to others involved in malware creation and distribution. The severity of the sentence is a clear sign that authorities take such operations very seriously.