Also, the TikTok clips do not feature download links or any text that would allow the built-in safety tools that TikTok employs to automatically detect and potentially ban the malicious TikTok accounts spreading malware.

Microsoft, the U.S. Justice Department, Europol and Japan’s Cybercrime Control Center are targeting the Lumma Stealer malware in an international operation. A court order has empowered the group to start taking it down.

The Lumma infostealer has become a popular way for hackers to steal sensitive data like banking information and cryptocurrency wallets.

Earlier this month, a coordinated disruption action targeting the Lumma malware-as-a-service (MaaS) information stealer operation seized thousands of domains, part of its infrastructure backbone worldwide.