Risky Bulletin Risky Bulletin: DanaBot and Lumma Stealer taken down
May 23, 2025
Law enforcement recently shut down the DanaBot and Lumma Stealer malware operations, marking key victories in the fight against cybercrime. The US government is pushing for a centralized data broker platform to streamline data management. In international news, Turkey dismantled a Chinese spy ring using IMSI catchers, while Russia hacked border cameras to track military aid to Ukraine. These developments highlight the ever-evolving landscape of cybersecurity threats and responses.
AI Snips
Chapters
Transcript
Episode notes
DanaBot and Lumma Takedown Insight
- Law enforcement successfully shut down the DanaBot and Lumma Stealer malware operations that infected hundreds of thousands.
- These malwares collected login credentials and enabled ransomware intrusions, highlighting their broad impact.
US Centralized Data Marketplace
- The US government plans a centralized data broker marketplace to avoid duplicate payments on data purchases.
- This Intelligence Community Data Consortium will serve at least 18 agencies, improving efficiency.
Marks & Spencer Cyberattack Impact
- Marks & Spencer’s cyberattack costs exceed £300 million in recovery and lost revenue.
- The breach entered through a social engineering attack on their contractor Tata Consulting Services.