The National Cyber Security Centre (NCSC) sent out emails to about 26,000 email addresses on Wednesday warning about the malware Lumma Stealer, which was designed to steal sensitive information like email addresses and passwords. Some of the stolen passwords were connected with government agency systems and bank accounts.

The NCSC was alerted to the attack through an international threat sharing forum. NCSC would like people who received the email to go to the Own Your Online website which is operated by NSCS for advice on what to look for and how to remove the malware, or to contact an IT prover for help.

https://www.ownyouronline.govt.nz/news-and-alerts/lumma-stealer-malware-affecting-thousands

Source: Radio New Zealand (RNZ)

10/12/25