Lumma Stealer, a malware-as-a-service, is using a new tactic to scam targets via malicious CAPTCHA pages. By posing as a verification process, the malware prompts targets to inadvertently trigger a malware download. Lumma Stealer specialises in stealing sensitive data, including passwords and crypto-wallet information. This new strategy, exploiting CAPTCHA, displays the malware’s adaptability in evading detection and the need for consistent monitoring and adaptation by security forces.
Microsoft Releases Out-of-Band Patch to Fix Critical RRAS RCE Vulnerabilities in Windows 11
Microsoft released an out-of-band hotpatch update on March 13, 2026, addressing serious security vulnerabilities in Windows 11 versions 24H2 and 25H2. Tracked as KB5084597 and
