NZ NCSC swings into action

This week New Zealand’s National Cyber Security Centre (NCSC) is emailing around 26,000 people warning they are likely compromised by the malware Lumma Stealer.

Lumma Stealer first appeared in 2023, but re-surfaced in New Zealand recently. It’s a RaaS (Ransomware-as-a-Service) threat – Think of it as a tool that professional cyber criminals can easily rent out to target people like you.

It targets information like passwords and account login with a range of infection methods, from phishing emails to fake advertisements, and compromised websites to bad applications.

Of course, you also want to be sure the email you get is a legitimate one – Any legitimate communication will come from ncsc@comms.ncsc.govt.nz or no-reply@comms.ncsc.govt.nz only. Pay careful attention to any mis-spelling, or compare it to the NCSC website: https://www.ncsc.govt.nz/news/nz-cyber-agency-alerts-thousands-to-malware-infection/.

What should I do?

If you receive this NCSC email, it means you’re affected. Two priorities are: 

• Running your anti-virus protection should remove it. 
• Update the passwords on your key accounts, e.g. Bank, Government, email and social media.

If you’ve received any emails about unusual activity on any accounts (or noticed it yourself) then you should also change the password on those account.

Remember the security basics

Use long, strong, unique passwords on your accounts and MFA (multi-factor authentication) or 2FA wherever possible.

For more info on Lumma Stealer: https://www.ownyouronline.govt.nz/news-and-alerts/lumma-stealer-malware-affecting-thousands

If you’re still not sure or if you want to look at your cyber security with people who understand your business, we’re here to help.