Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Lumma Stealer Expands Attack Surface with Fake Booking Sites and CAPTCHA Tricks
Malware and Vulnerabilities
March 05, 2025
SecurityOnline
The campaign’s infection chain was first detected in early 2025, targeting users booking trips to Palawan, Philippines. Within a week, the attack vector shifted to a hotel in Munich, Germany, indicating a broader global focus on travel-related sites.
Read More
Lumma stealer
LummaStealer
Ticket Booking Platform
Fake CAPTCHA Page
Malware-as-a-Service (MaaS)
Publisher
Previous
LibreOffice Patches Security Flaw Allowing Arbitrary Sc ...
Malware and Vulnerabilities
Next
Zoho Patches Account Takeover Vulnerability in ADSelfSe ...
Malware and Vulnerabilities
/https://cyware-ent.s3.amazonaws.com/image_bank/0c9a_shutterstock_1886993512.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/9975_shutterstock_1859473264.jpg)
