Microsoft (MSFT) isn’t just patching security holes — it’s taking names and seizing domains. The tech giant confirmed on May 21 that it has launched a full-scale legal offensive against Lumma Stealer, a notorious information-grabbing malware kit that’s been spreading like wildfire since 2022.
Confident Investing Starts Here:
- Easily unpack a company's performance with TipRanks' new KPI Data for smart investment decisions
- Receive undervalued, market resilient stocks right to your inbox with TipRanks' Smart Value Newsletter
According to a Microsoft blog post, a U.S. federal court in Georgia authorized the company’s Digital Crimes Unit to dismantle 2,300 websites tied directly to Lumma’s infrastructure. This wasn’t just a solo operation either. Microsoft worked with the U.S. Department of Justice, Europol’s European Cybercrime Center, and Japan’s Cybercrime Control Center to take down command-and-control domains and marketplaces trafficking the malware.
Microsoft Disrupts Central Operations of Lumma Malware
Lumma is no minor bug. It’s a full-fledged infostealer built to hijack everything from passwords and credit card details to crypto wallets and bank accounts. Microsoft says the tool has been sold on underground forums since its launch, constantly evolving with new versions and new tricks.
In a two-month span between March 16 and May 16, Microsoft says it flagged over 394,000 Windows machines infected by Lumma. The company has since collaborated with cybersecurity firms and law enforcement agencies to cut off communications between infected devices and Lumma’s servers.
Malware Surge Hits Crypto and Finance Hard
This takedown comes as digital attacks ramp up across the board — especially in crypto. According to Chainalysis, an estimated $51 billion in crypto was lost to fraud in 2024 alone. That includes attacks run by professional cybercrime networks, state-sponsored hackers, and scammers using AI tools to amplify damage.
Crypto drainers — tools similar to Lumma — have been spotted across fake airdrop sites, phishing pages, and even bundled into software. Just this week, a Chinese printer company was found to be distributing Bitcoin-draining malwarethrough its own drivers. The haul? Around $953,000 in stolen crypto.
Lumma Is the Symptom, Not the Disease
While Microsoft’s legal strike on Lumma is a win, it’s also a red flag. Malware-as-a-Service is growing fast. Recent reporting by AMLBot shows that drainers like these are now being sold for as little as $100, making it easier than ever for low-skill actors to do major damage.
And the victims? Increasingly older. According to the FBI, Americans over 60 were the most affected group in 2024, contributing to an eye-watering $9.3 billion in crypto fraud losses that year.
Is MSFT a Good Stock to Buy?
Wall Street isn’t just impressed by Microsoft’s cybersecurity muscle — it’s backing the stock with real confidence. According to recent data, 35 analysts have weighed in on MSFT over the past three months, and the verdict is a Strong Buy. Out of those, 30 have issued Buy ratings, with zero Sell calls in sight.
The average 12-month JPM price target for Microsoft stock now stands at $511.83, which suggests a 13.09% upside from its current price of $452.57. The high-end forecast sees MSFT reaching $600, while the lowest outlook still keeps it above water at $475.
Looking for a trading platform? Check out TipRanks' Best Online Brokers , and find the ideal broker for your trades.
Report an Issue