• By Mageshwaran B
• phishing, lummastealer, fakecaptcha, amsi_bypass
• 8 Likes
• 0 Comments
• 1 Shares

Websites poisoned with Fake Captcha Leading to Lumma Stealer

Since Q1’ 2025 we found that the Threat Actor leveraging Cloudflare themed Fake Captcha to Inject into legit sites leading to Drop LummaStealer. Where the Malware author used various obfuscation and encryption methods to evade the detections from AV vendors