ShellCodeX
Tools • Events • News • Insights
ShellCodeX Intelligence Brief
HIGH Cybersecurity

USB worm delivers clipboard-stealing crypto malware via Windows shortcuts

Source headline: USB worm spreads crypto-stealing malware via Windows shortcut files

Threat level High
Signal strength 75/100
Source confidence 1 source
Published 7 hours ago

Intelligence Summary

A self-spreading USB worm is targeting cryptocurrency wallet users by abusing Windows shortcut (.LNK) files. It delivers clipboard-stealing malware that can capture cryptocurrency-related data. The campaign is designed to spread when removable media is used on affected Windows systems. Stolen information can enable attackers to manipulate wallet transactions. The use of Tor helps obscure command-and-control activity. Users should disable suspicious shortcut execution from unknown USB drives and scan removable media with updated protections.

Recommended Action

Review affected assets, schedule urgent remediation, and monitor related indicators.

Topics

#cryptocurrency #clipboard-stealer #tor #usb #windows-lnk #worm
Original reporting BleepingComputer USB worm spreads crypto-stealing malware via Windows shortcut files
Open original source

Related Pulse Signals

View all signals
Critical · Cybersecurity Gentlemen ransomware adds EDR-killing techniques to evade defenses Medium · Cybersecurity Nintendo confirms survey data theft via TinyPulse service High · Cybersecurity Microsoft traces Windows USB LNK clipper to Tor-based hidden-service C2 High · Cybersecurity SAVE voter-data centralization risks disenfranchisement and breaches