The Rise of the Lumma Info-Stealer | Darktrace Blog>
–
The Lumma info stealer is an advanced threat that is designed to target large organizations through its use of the Metasploit framework. It exploits known vulnerabilities in corporate networks, allowing attackers to gain access, steal sensitive data, and even deploy malware or ransomware. Despite its recent emergence, Lumma has already been linked to multiple high-profile breaches, including the recent hack of multiple energy companies in Norway. The info stealer uses the Metasploit framework to exploit vulnerabilities in systems and networks. This is one of the most popular and widely used frameworks for performing penetration testing, as well as carrying out auditing and vulnerability assessment scans. Metasploit can be used to exploit known vulnerabilities or create malicious payloads that can be used to distribute malware or ransomware. The Lumma info stealer has been linked to multiple attacks on financial services, energy, healthcare, and other organizations across the globe. It is currently unknown how this malicious software spreads, but it is likely to originate from malicious email attachments, malicious third-party websites or applications, or from removable media. Once it has been distributed, the info stealer will attempt to
Link: https://darktrace.com/blog/the-rise-of-the-lumma-info-stealer