9 December 2025
The NCSC email directs recipients to the NCSC’s Own Your Online website for advice on how to remove the malware and provides general cyber security advice to help address potential risk to their online accounts.
Emails are going out to around 26,000 email addresses.
The NCSC’s Chief Operating Officer, Michael Jagusch, says the email relates to malware known as Lumma Stealer, which typically impacts devices using Microsoft Windows operating systems.
The malicious software is designed to steal sensitive information, like email addresses and passwords, from devices typically for the purposes of fraud or identity theft.
The use of Lumma Stealer and other similar malware by cyber criminals is an ongoing international issue.
“We were alerted to the issue through our cyber security partnerships and have worked with New Zealand government agencies and financial institutions to contact some of the affected users.
“However, there is a large group of users we are now contacting directly.
“This is the first time that we have conducted such a large-scale public outreach, and we want to assure recipients that the email from the NCSC is legitimate.”
If people have concerns, they should double-check that the sender address is no-reply@comms.ncsc.govt.nz.
Read our guidance about Lumma Stealer on Own Your Online External Link
ENDS
Media contact: media@ncsc.govt.nz