Check Point’s latest Global Threat Index report shows that the relatively unknown malware, Lumma, burst into the list of most widespread threats both in Denmark and globally in October.
Thus another malware with Russian connections appears on the cyber security scene.
The cyber security company Check Point Software Technologies has found in its latest Global Threat Index report for October that Danish companies are facing a new and previously unknown malware, namely the fast-growing Lumma malware.
Lumma, which is believed to be of Russian origin, has out of the blue become a widespread cyber threat against both Danish and international companies. The malware has not previously been included in Check Point’s Global Threat Index reports, which summarize the top 10 malware threats in over 40 countries. However, figures from October show that as much as 1.8 per cent of all Danish companies have already been under attack by the Lumma malware, and that the malware now occupies fourth place on the list of the biggest threats to Danish companies.
The Lumma malware is a so-called infostealer developed by cybercriminals to infiltrate systems and steal browser data, files and login details, including financial information, personal data and login details. The malware often spreads through phishing emails, where it is attached as files or hidden in links that appear legitimate. If the recipient clicks on the link or file, the damage is done and the hackers can then start moving around the systems. In addition, Lumma is spread through so-called drive-by downloads, where visitors to compromised websites automatically download the malware β completely without realizing it.
For Balder Borup, who is a Security Engineer at Check Point Software Technologies in Denmark, the development is deeply worrying:
βThe entry of the Lumma malware into the list of the biggest cyber threats is very disturbing. Danish companies have become particularly attractive targets for Russian actors due to Denmark’s support for Ukraine. That almost 2 per cent of Danish companies have already been attacked, also testifies to how quickly new threats are spreading. Particularly worrying is that Lumma operates as a malware-as-a-service model, where cybercriminals can buy Lumma on the dark web as a ready-made solution. This makes the threat more unpredictable and facilitates propagation, as even less experienced hackers can now carry out advanced attacks.β
He continues:
“Malware like Lumma, which not only steals data, but also hides itself effectively and is easily accessible, is an expression of a changing threat landscape, where companies must update their security level to keep up. It requires a combination of advanced security solutions and increased awareness among employees. Lumma is a reminder that cyber threats are constantly evolving and that the defense should therefore also be dynamic.β
Read the English blog post her.
Om Check Point Software Technologies
Check Point Software Technologies (https://www.checkpoint.com) is one of the world’s leading providers of AI-powered cloud-based cybersecurity platforms, protecting more than 100,000 organizations worldwide. Check Point harnesses the power of AI to improve efficiency and accuracy in cybersecurity with the company’s Infinity Platform, which ensures proactive threat prevention and faster response times with one of the industry’s leading detection rates. The comprehensive platform includes technology delivered via the cloud and consists of: Check Point Harmony for securing the user workplace; Check Point CloudGuard for securing clouds; Check Point Quantum for network protection and Check Point Infinity Platform Services for security management and services for over 100,000 organizations of all sizes.
Source: it-kanalen.dk
