Microsoft has reported that over 394,000 Windows computers worldwide have been infected by the Lumma malware. The global effort to combat this threat involved the cybercrime control center of Japan, which played a key role in suspending the local Lumma infrastructure. According to Microsoft’s blog post, the company worked closely with law enforcement agencies and industry partners to disrupt the malicious operations. These efforts resulted in the seizure or transfer of more than 1,300 domains to Microsoft, including 300 domains actioned by law enforcement with the assistance of Europol. These domains will now be redirected to Microsoft sinkholes, effectively neutralizing them. Microsoft acknowledged the collaborative efforts of other tech companies, such as Cloudflare, BitSight, and Lumen, in dismantling the Lumma malware ecosystem. Hackers have been purchasing Lumma through underground online forums since 2022, and its developers have been continuously refining its features. This malware has gained prominence among cybercriminals due to its ease of distribution and ability to bypass some security measures with the right coding. One notable instance of Lumma’s use occurred in a phishing campaign in March 2025, where attackers pretended to be representatives of the online travel service, Booking.com. This deception led victims to unknowingly compromise their systems, allowing the cybercriminals to carry out financial fraud. Beyond this specific campaign, Microsoft highlighted that hackers have also leveraged Lumma to target online gaming communities and educational institutions. Other cybersecurity firms have reported the malware's involvement in attacks on sectors including manufacturing, logistics, healthcare, and other critical infrastructure, underscoring its versatile and dangerous nature. The disruption of the Lumma infrastructure represents a significant victory in the ongoing battle against cyber threats, demonstrating the effectiveness of coordinated international efforts to combat digital crime. However, the ever-evolving landscape of cybersecurity means that constant vigilance and collaboration are essential to stay ahead of future threats.