Microsoft warns crypto clipper now acts like backdoor

June 18, 2026
11:35 am

Microsoft warns crypto clipper now acts like backdoor

Microsoft Threat Intelligence has warned of a Windows-based crypto clipper campaign that has affected users since February 2026.

Summary

Microsoft says CryptoBandits uses Tor-routed communication, wallet replacement, screenshots, and remote code execution on Windows.
The malware spreads through malicious shortcut files and creates more infected shortcuts from legitimate files.
Security teams should hunt linked behaviors, not isolated alerts, to catch this attack chain early.

In a Microsoft blog, researchers said the malware steals clipboard data, replaces wallet addresses, and searches for valuable crypto information.

The company said Microsoft Defender…

Share this article

Intel Stock Price Surges After Trump Says It Signed Apple Chip Deal

June 18, 2026

Microsoft warns crypto clipper now acts like backdoor

June 18, 2026

Crypto News: Gruntle Presale Passes $106k as Long-Term Bitcoin Holders Absorb 125,000 BTC and US-Iran Calms

June 18, 2026

Crypto market positioning is ‘defensive and thin’ after Fed rate meeting, Marex analysts say

June 18, 2026

Why Investors Are Watching Garda Diversified Property Fund (ASX:GDF) Today?

June 18, 2026

NEWS: Banks, EMI and crypto top sector risk list, Sweden’s watchdog says

June 18, 2026

Marvell Stock Analysis: My Final Verdict

June 18, 2026

CFTC’s Mike Selig Confirms More Crypto Products as CME Plans to Sue Regulator

June 18, 2026