Microsoft Identifies Malware 'Worm' that Hijacks Crypto Wallets, Spreads Through USB Drives

Microsoft identifies malware 'worm' that hijacks crypto wallets, spreads through USB drives

The software intercepts shortcut files and directs them to install a worm that harvests private keys from the Windows clipboard and inserts its own destination wallet addresses when it detects a transfer.

Hackers Use Weaponized Windows Shortcuts to Spread Crypto Clipper Across USB Drives

A newly discovered cryptocurrency clipper malware has been quietly stealing digital assets from victims since February 2026, spreading through a trick that most users would never suspect: weaponized Windows shortcut files on USB drives. The malware is not just a simple thief. It comes with worm-like behavior, Tor-based communication, and the ability to execute remote […] The post Hackers Use Weaponized Windows Shortcuts to Spread Crypto Clipper …

New Crypto-Stealing Malware in the Wild, Microsoft Warns: Details

Microsoft has warned of a sophisticated crypto-stealing malware campaign, dubbed CryptoBandits, that spreads via infected USB drives and hijacks wallet addresses, seed phrases, and private keys.

Microsoft warns users of 'Crypto Clipper' malware spread via USB drives

The malware blends data theft with remote code execution, “turning a financially motivated stealer into a lightweight backdoor,” Microsoft said.