{"id":10180,"date":"2025-07-20T09:41:07","date_gmt":"2025-07-20T02:41:07","guid":{"rendered":"https:\/\/infosec.new88088.net\/?p=10180"},"modified":"2026-02-03T14:13:42","modified_gmt":"2026-02-03T07:13:42","slug":"10180","status":"publish","type":"post","link":"https:\/\/infosec.new88088.net\/2025\/07\/20\/10180\/","title":{"rendered":"Chi\u1ebfn d\u1ecbch to\u00e0n c\u1ea7u ch\u1eb7n \u0111\u1ee9ng m\u00e3 \u0111\u1ed9c Lumma, ng\u0103n r\u00f2 r\u1ec9 d\u1eef li\u1ec7u c\u00e1 nh\u00e2n tr\u00ean di\u1ec7n r\u1ed9ng"},"content":{"rendered":"<p data-start=\"155\" data-end=\"704\">M\u1ed9t chi\u1ebfn d\u1ecbch truy qu\u00e9t t\u1ed9i ph\u1ea1m m\u1ea1ng quy m\u00f4 to\u00e0n c\u1ea7u v\u1eeba \u0111\u01b0\u1ee3c tri\u1ec3n khai v\u1edbi s\u1ef1 ph\u1ed1i h\u1ee3p ch\u1eb7t ch\u1ebd gi\u1eefa Microsoft, FBI, Europol c\u00f9ng nhi\u1ec1u t\u1ed5 ch\u1ee9c an ninh m\u1ea1ng h\u00e0ng \u0111\u1ea7u th\u1ebf gi\u1edbi. Chi\u1ebfn d\u1ecbch n\u00e0y \u0111\u00e3 gi\u00e1ng m\u1ed9t \u0111\u00f2n m\u1ea1nh v\u00e0o m\u1ea1ng l\u01b0\u1edbi ph\u00e1t t\u00e1n m\u00e3 \u0111\u1ed9c Lumma Infostealer \u2013 m\u1ed9t lo\u1ea1i ph\u1ea7n m\u1ec1m \u0111\u1ed9c h\u1ea1i nguy hi\u1ec3m \u0111\u00e3 \u00e2m th\u1ea7m \u0111\u00e1nh c\u1eafp d\u1eef li\u1ec7u t\u1eeb h\u00e0ng tr\u0103m ngh\u00ecn m\u00e1y t\u00ednh tr\u00ean to\u00e0n c\u1ea7u trong th\u1eddi gian d\u00e0i. Vi\u1ec7c tri\u1ec7t ph\u00e1 Lumma \u0111\u01b0\u1ee3c xem l\u00e0 m\u1ed9t b\u01b0\u1edbc ti\u1ebfn quan tr\u1ecdng trong n\u1ed7 l\u1ef1c b\u1ea3o v\u1ec7 ng\u01b0\u1eddi d\u00f9ng v\u00e0 h\u1ec7 sinh th\u00e1i s\u1ed1 tr\u01b0\u1edbc l\u00e0n s\u00f3ng t\u1ea5n c\u00f4ng m\u1ea1ng ng\u00e0y c\u00e0ng tinh vi.<\/p>\n<p data-start=\"155\" data-end=\"704\"><img fetchpriority=\"high\" decoding=\"async\" class=\" wp-image-10181 aligncenter\" src=\"https:\/\/infosec.new88088.net\/wp-content\/uploads\/sites\/20\/2026\/02\/1-300x169.png\" alt=\"\" width=\"654\" height=\"368\" srcset=\"https:\/\/infosec.new88088.net\/wp-content\/uploads\/sites\/20\/2026\/02\/1-300x169.png 300w, https:\/\/infosec.new88088.net\/wp-content\/uploads\/sites\/20\/2026\/02\/1.png 712w\" sizes=\"(max-width: 654px) 100vw, 654px\" \/><\/p>\n<p data-start=\"706\" data-end=\"1356\">Lumma, c\u00f2n \u0111\u01b0\u1ee3c g\u1ecdi l\u00e0 LummaC2, l\u00e0 m\u1ed9t m\u00e3 \u0111\u1ed9c ho\u1ea1t \u0111\u1ed9ng theo m\u00f4 h\u00ecnh \u201cmalware-as-a-service\u201d (m\u00e3 \u0111\u1ed9c nh\u01b0 m\u1ed9t d\u1ecbch v\u1ee5). Thay v\u00ec t\u1ef1 ph\u00e1t tri\u1ec3n c\u00f4ng c\u1ee5 t\u1ea5n c\u00f4ng, t\u1ed9i ph\u1ea1m m\u1ea1ng ch\u1ec9 c\u1ea7n chi tr\u1ea3 kho\u1ea3n ph\u00ed t\u1eeb kho\u1ea3ng 250 \u0111\u1ebfn 1.000 USD \u0111\u1ec3 thu\u00ea Lumma v\u00e0 s\u1eed d\u1ee5ng ngay b\u1ed9 c\u00f4ng c\u1ee5 \u0111\u00e1nh c\u1eafp d\u1eef li\u1ec7u ho\u00e0n ch\u1ec9nh. M\u00e3 \u0111\u1ed9c n\u00e0y c\u00f3 kh\u1ea3 n\u0103ng thu th\u1eadp h\u00e0ng lo\u1ea1t th\u00f4ng tin nh\u1ea1y c\u1ea3m nh\u01b0 t\u00ean \u0111\u0103ng nh\u1eadp, m\u1eadt kh\u1ea9u, d\u1eef li\u1ec7u th\u1ebb t\u00edn d\u1ee5ng, cookie tr\u00ecnh duy\u1ec7t, l\u1ecbch s\u1eed truy c\u1eadp web v\u00e0 th\u1eadm ch\u00ed c\u1ea3 th\u00f4ng tin v\u00ed ti\u1ec1n \u0111i\u1ec7n t\u1eed. Nh\u1edd c\u00e1ch ti\u1ebfp c\u1eadn \u201cd\u1ecbch v\u1ee5 h\u00f3a\u201d, Lumma nhanh ch\u00f3ng tr\u1edf n\u00ean ph\u1ed5 bi\u1ebfn trong gi\u1edbi t\u1ed9i ph\u1ea1m m\u1ea1ng, k\u1ec3 c\u1ea3 v\u1edbi nh\u1eefng \u0111\u1ed1i t\u01b0\u1ee3ng kh\u00f4ng c\u00f3 ki\u1ebfn th\u1ee9c k\u1ef9 thu\u1eadt chuy\u00ean s\u00e2u.<\/p>\n<p data-start=\"1358\" data-end=\"1776\">Vi\u1ec7c ph\u00e1t t\u00e1n Lumma \u0111\u01b0\u1ee3c th\u1ef1c hi\u1ec7n th\u00f4ng qua nhi\u1ec1u h\u00ecnh th\u1ee9c tinh vi v\u00e0 kh\u00f3 ph\u00e1t hi\u1ec7n. C\u00e1c chi\u1ebfn d\u1ecbch l\u1eeba \u0111\u1ea3o email gi\u1ea3 m\u1ea1o, qu\u1ea3ng c\u00e1o \u0111\u1ed9c h\u1ea1i, ph\u1ea7n m\u1ec1m crack, keygen hay nh\u1eefng trang web gi\u1ea3 m\u1ea1o CAPTCHA \u0111\u01b0\u1ee3c s\u1eed d\u1ee5ng \u0111\u1ec3 d\u1ee5 ng\u01b0\u1eddi d\u00f9ng t\u1ef1 tay c\u00e0i \u0111\u1eb7t m\u00e3 \u0111\u1ed9c. Trong kh\u00f4ng \u00edt tr\u01b0\u1eddng h\u1ee3p, n\u1ea1n nh\u00e2n ho\u00e0n to\u00e0n kh\u00f4ng nh\u1eadn ra thi\u1ebft b\u1ecb c\u1ee7a m\u00ecnh \u0111\u00e3 b\u1ecb x\u00e2m nh\u1eadp cho \u0111\u1ebfn khi d\u1eef li\u1ec7u c\u00e1 nh\u00e2n b\u1ecb \u0111\u00e1nh c\u1eafp ho\u1eb7c t\u00e0i kho\u1ea3n b\u1ecb chi\u1ebfm \u0111o\u1ea1t.<\/p>\n<p data-start=\"1778\" data-end=\"2285\">Theo c\u00e1c b\u00e1o c\u00e1o an ninh, chi\u1ebfn d\u1ecbch t\u1ea5n c\u00f4ng m\u1ea1ng li\u00ean quan \u0111\u1ebfn Lumma b\u00f9ng ph\u00e1t m\u1ea1nh t\u1eeb gi\u1eefa th\u00e1ng 3 \u0111\u1ebfn gi\u1eefa th\u00e1ng 5 n\u0103m 2025. Trong giai \u0111o\u1ea1n n\u00e0y, h\u01a1n 394.000 thi\u1ebft b\u1ecb Windows t\u1ea1i h\u01a1n 40 qu\u1ed1c gia \u0111\u00e3 b\u1ecb l\u00e2y nhi\u1ec5m. Thi\u1ec7t h\u1ea1i kinh t\u1ebf \u0111\u01b0\u1ee3c \u01b0\u1edbc t\u00ednh l\u00ean \u0111\u1ebfn h\u00e0ng ch\u1ee5c tri\u1ec7u \u0111\u00f4 la M\u1ef9, ch\u1ee7 y\u1ebfu \u0111\u1ebfn t\u1eeb vi\u1ec7c \u0111\u00e1nh c\u1eafp v\u00e0 bu\u00f4n b\u00e1n d\u1eef li\u1ec7u th\u1ebb t\u00edn d\u1ee5ng tr\u00ean c\u00e1c ch\u1ee3 \u0111en. M\u1ed9t l\u01b0\u1ee3ng l\u1edbn d\u1eef li\u1ec7u b\u1ecb r\u00f2 r\u1ec9 \u0111\u00e3 xu\u1ea5t hi\u1ec7n tr\u00ean c\u00e1c n\u1ec1n t\u1ea3ng nh\u01b0 Telegram, n\u01a1i t\u1ed9i ph\u1ea1m m\u1ea1ng trao \u0111\u1ed5i th\u00f4ng tin nhanh ch\u00f3ng v\u00e0 kh\u00f3 b\u1ecb ki\u1ec3m so\u00e1t.<\/p>\n<p data-start=\"2287\" data-end=\"2598\">Trong khu\u00f4n kh\u1ed5 chi\u1ebfn d\u1ecbch truy qu\u00e9t, c\u00e1c c\u01a1 quan ch\u1ee9c n\u0103ng \u0111\u00e3 gi\u00e0nh quy\u1ec1n ki\u1ec3m so\u00e1t h\u01a1n 2.300 t\u00ean mi\u1ec1n \u0111\u1ed9c h\u1ea1i, qua \u0111\u00f3 c\u1eaft \u0111\u1ee9t k\u00eanh li\u00ean l\u1ea1c \u0111i\u1ec1u khi\u1ec3n t\u1eeb xa (C2) gi\u1eefa hacker v\u00e0 c\u00e1c thi\u1ebft b\u1ecb b\u1ecb nhi\u1ec5m m\u00e3 \u0111\u1ed9c. \u0110\u00e2y \u0111\u01b0\u1ee3c xem l\u00e0 y\u1ebfu t\u1ed1 then ch\u1ed1t gi\u00fap l\u00e0m t\u00ea li\u1ec7t ph\u1ea7n l\u1edbn h\u1ea1 t\u1ea7ng \u0111i\u1ec1u ph\u1ed1i c\u1ee7a Lumma trong ng\u1eafn h\u1ea1n.<\/p>\n<p data-start=\"2600\" data-end=\"3158\">Tuy nhi\u00ean, c\u00e1c chuy\u00ean gia an ninh m\u1ea1ng c\u1ea3nh b\u00e1o r\u1eb1ng m\u1ed1i \u0111e d\u1ecda t\u1eeb Lumma v\u1eabn ch\u01b0a ho\u00e0n to\u00e0n b\u1ecb lo\u1ea1i b\u1ecf. M\u1ed9t s\u1ed1 m\u00e1y ch\u1ee7, \u0111\u1eb7c bi\u1ec7t t\u1ea1i Nga \u2013 n\u01a1i \u0111\u01b0\u1ee3c cho l\u00e0 trung t\u00e2m \u0111i\u1ec1u ph\u1ed1i ch\u00ednh c\u1ee7a h\u1ec7 th\u1ed1ng, v\u1eabn c\u00f2n ho\u1ea1t \u0111\u1ed9ng. C\u00e1c nh\u00f3m \u0111\u1ee9ng sau Lumma \u0111\u00e3 nhanh ch\u00f3ng t\u00ecm c\u00e1ch x\u00e2y d\u1ef1ng l\u1ea1i h\u1ea1 t\u1ea7ng m\u1edbi \u0111\u1ec3 ti\u1ebfp t\u1ee5c cung c\u1ea5p d\u1ecbch v\u1ee5. Theo \u0111\u00e1nh gi\u00e1 t\u1eeb nhi\u1ec1u c\u00f4ng ty b\u1ea3o m\u1eadt, Lumma hi\u1ec7n v\u1eabn l\u00e0 m\u1ed9t trong nh\u1eefng c\u00f4ng c\u1ee5 \u0111\u01b0\u1ee3c t\u1ed9i ph\u1ea1m m\u1ea1ng \u01b0a chu\u1ed9ng, bao g\u1ed3m c\u1ea3 nh\u00f3m hacker kh\u00e9t ti\u1ebfng Scattered Spider v\u1edbi nhi\u1ec1u chi\u1ebfn d\u1ecbch t\u1ea5n c\u00f4ng nh\u1eafm v\u00e0o c\u00e1c doanh nghi\u1ec7p l\u1edbn t\u1ea1i M\u1ef9 v\u00e0 ch\u00e2u \u00c2u.<\/p>\n<p data-start=\"3160\" data-end=\"3493\">M\u1ed9t v\u1ea5n \u0111\u1ec1 \u0111\u00e1ng lo ng\u1ea1i kh\u00e1c l\u00e0 d\u00f9 h\u1ec7 th\u1ed1ng \u0111i\u1ec1u khi\u1ec3n c\u00f3 th\u1ec3 b\u1ecb \u0111\u00f3ng c\u1eeda, m\u00e3 \u0111\u1ed9c Lumma v\u1eabn c\u00f3 th\u1ec3 t\u1ed3n t\u1ea1i tr\u00ean thi\u1ebft b\u1ecb ng\u01b0\u1eddi d\u00f9ng n\u1ebfu kh\u00f4ng \u0111\u01b0\u1ee3c ph\u00e1t hi\u1ec7n v\u00e0 lo\u1ea1i b\u1ecf tri\u1ec7t \u0111\u1ec3. \u0110i\u1ec1u n\u00e0y \u0111\u1ed3ng ngh\u0129a v\u1edbi vi\u1ec7c nguy c\u01a1 r\u00f2 r\u1ec9 th\u00f4ng tin c\u00e1 nh\u00e2n v\u1eabn hi\u1ec7n h\u1eefu, \u0111\u1eb7c bi\u1ec7t \u0111\u1ed1i v\u1edbi c\u00e1c h\u1ec7 th\u1ed1ng c\u00e1 nh\u00e2n ho\u1eb7c doanh nghi\u1ec7p ch\u01b0a \u0111\u01b0\u1ee3c b\u1ea3o v\u1ec7 \u0111\u1ea7y \u0111\u1ee7.<\/p>\n<p data-start=\"3495\" data-end=\"4304\" data-is-last-node=\"\" data-is-only-node=\"\">\u0110\u1ec3 gi\u1ea3m thi\u1ec3u r\u1ee7i ro, c\u00e1c chuy\u00ean gia khuy\u1ebfn ngh\u1ecb ng\u01b0\u1eddi d\u00f9ng th\u01b0\u1eddng xuy\u00ean c\u1eadp nh\u1eadt h\u1ec7 \u0111i\u1ec1u h\u00e0nh v\u00e0 ph\u1ea7n m\u1ec1m nh\u1eb1m v\u00e1 c\u00e1c l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt. Vi\u1ec7c c\u1ea3nh gi\u00e1c khi m\u1edf email l\u1ea1, tr\u00e1nh t\u1ea3i ph\u1ea7n m\u1ec1m kh\u00f4ng r\u00f5 ngu\u1ed3n g\u1ed1c v\u00e0 kh\u00f4ng nh\u1ea5p v\u00e0o c\u00e1c li\u00ean k\u1ebft \u0111\u00e1ng ng\u1edd l\u00e0 nh\u1eefng bi\u1ec7n ph\u00e1p c\u01a1 b\u1ea3n nh\u01b0ng hi\u1ec7u qu\u1ea3. B\u00ean c\u1ea1nh \u0111\u00f3, s\u1eed d\u1ee5ng ph\u1ea7n m\u1ec1m b\u1ea3o m\u1eadt c\u00f3 kh\u1ea3 n\u0103ng ph\u00e1t hi\u1ec7n h\u00e0nh vi b\u1ea5t th\u01b0\u1eddng, b\u1ea3o v\u1ec7 theo th\u1eddi gian th\u1ef1c v\u00e0 gi\u00e1m s\u00e1t clipboard s\u1ebd gi\u00fap t\u0103ng c\u01b0\u1eddng l\u1edbp ph\u00f2ng th\u1ee7. Vi\u1ec7c k\u00edch ho\u1ea1t x\u00e1c th\u1ef1c hai y\u1ebfu t\u1ed1 (2FA) cho c\u00e1c t\u00e0i kho\u1ea3n quan tr\u1ecdng c\u0169ng \u0111\u00f3ng vai tr\u00f2 then ch\u1ed1t trong vi\u1ec7c gi\u1ea3m thi\u1ec3u thi\u1ec7t h\u1ea1i khi th\u00f4ng tin \u0111\u0103ng nh\u1eadp b\u1ecb l\u1ed9. Cu\u1ed1i c\u00f9ng, v\u1edbi c\u00e1c doanh nghi\u1ec7p, \u0111\u00e0o t\u1ea1o nh\u1eadn th\u1ee9c an ninh cho nh\u00e2n vi\u00ean l\u00e0 y\u1ebfu t\u1ed1 kh\u00f4ng th\u1ec3 thi\u1ebfu, b\u1edfi sai s\u00f3t con ng\u01b0\u1eddi v\u1eabn lu\u00f4n l\u00e0 \u0111i\u1ec3m y\u1ebfu l\u1edbn nh\u1ea5t m\u00e0 nh\u1eefng m\u00e3 \u0111\u1ed9c nh\u01b0 Lumma t\u00ecm c\u00e1ch khai th\u00e1c.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>M\u1ed9t chi\u1ebfn d\u1ecbch truy qu\u00e9t t\u1ed9i ph\u1ea1m m\u1ea1ng quy m\u00f4 to\u00e0n c\u1ea7u v\u1eeba \u0111\u01b0\u1ee3c tri\u1ec3n khai v\u1edbi s\u1ef1 ph\u1ed1i h\u1ee3p ch\u1eb7t ch\u1ebd gi\u1eefa Microsoft, FBI, Europol c\u00f9ng nhi\u1ec1u t\u1ed5 ch\u1ee9c an ninh m\u1ea1ng h\u00e0ng \u0111\u1ea7u th\u1ebf gi\u1edbi. Chi\u1ebfn d\u1ecbch n\u00e0y \u0111\u00e3 gi\u00e1ng m\u1ed9t \u0111\u00f2n m\u1ea1nh v\u00e0o m\u1ea1ng l\u01b0\u1edbi ph\u00e1t t\u00e1n m\u00e3 \u0111\u1ed9c Lumma Infostealer \u2013 [&hellip;]<\/p>\n","protected":false},"author":46,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[33],"tags":[],"class_list":["post-10180","post","type-post","status-publish","format-standard","hentry","category-tin-tuc-cua-vien"],"_links":{"self":[{"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/posts\/10180","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/users\/46"}],"replies":[{"embeddable":true,"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/comments?post=10180"}],"version-history":[{"count":0,"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/posts\/10180\/revisions"}],"wp:attachment":[{"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/media?parent=10180"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/categories?post=10180"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/infosec.new88088.net\/wp-json\/wp\/v2\/tags?post=10180"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}