Security researchers at Microsoft have issued a warning regarding a sophisticated worm capable of draining digital assets. The malware, which spreads primarily through infected USB storage devices, targets Windows systems by manipulating desktop shortcut files.
Once a device is compromised, the software monitors the system clipboard for signs of cryptocurrency addresses. If a user initiates a transfer, the worm surreptitiously replaces the destination address with one controlled by the attacker, effectively rerouting funds into unauthorized wallets.
In addition to intercepting clipboard data, the malware extracts private keys stored on the machine. This dual-pronged attack grants hackers direct access to assets while also creating opportunities for future unauthorized transactions.
Users are strongly advised to exercise caution when connecting external storage devices to their workstations. Experts recommend keeping Windows Defender fully updated and avoiding the opening of unfamiliar shortcut files on removable media to mitigate the risk of infection.
