Coinporta
Buy CryptoExchangesCountriesPayment MethodsWalletsNewsBlogGuides
Find My Exchange
Coinporta

Find where to buy any cryptocurrency in your country, with the payment methods you already have.

Discover

  • Exchanges
  • Coins
  • Countries
  • Payments

Field guide

  • Guides
  • Bitcoin Halving
  • Wallets
  • News
  • Blog

Company

  • About
  • Contact

Exchange comparisons

  • Gemini vs Kraken
  • Coinbase vs eToro
  • Bybit vs OKX
  • Binance vs OKX
  • Coinbase vs Crypto.com
  • Binance vs Bybit
  • Coinbase vs Gemini
  • Binance vs Kraken
  • Coinbase vs Kraken
  • Binance vs Coinbase

Exchange reviews

  • Coinbase review
  • Kraken review
  • Binance review
  • Gemini review
  • OKX review
  • Crypto.com review
  • Bitstamp review
  • Bybit review

Where to buy

  • Where to buy Bitcoin
  • Where to buy Ethereum
  • Where to buy Tether
  • Where to buy XRP
  • Where to buy BNB
  • Where to buy Solana
  • Where to buy USD Coin
  • Where to buy Dogecoin
  • Where to buy Cardano
  • Where to buy TRON
  • 100+ more coins →

By country

  • Buy crypto in Argentina
  • Buy crypto in Australia
  • Buy crypto in Austria
  • Buy crypto in Bangladesh
  • Buy crypto in Belgium
  • Buy crypto in Brazil
  • Buy crypto in Canada
  • Buy crypto in Chile
  • Buy crypto in Colombia
  • Buy crypto in Czech Republic
  • 50 countries →

By payment

  • Buy crypto with Apple Pay
  • Buy crypto with Bank Transfer
  • Buy crypto with Credit Card
  • Buy crypto with Debit Card
  • Buy crypto with Faster Payments
  • Buy crypto with Google Pay
  • Buy crypto with P2P / Cash
  • Buy crypto with PayPal
  • Buy crypto with Revolut
  • Buy crypto with SEPA
  • More methods →
© 2026 Coinporta. For comparison only — not financial advice.Terms and ConditionsPrivacy PolicyCookie Policy
Home/News/Microsoft warns of USB-spreading malware that steals crypto wallet keys
CoinDesk·1d ago·negative

Microsoft warns of USB-spreading malware that steals crypto wallet keys

Microsoft has identified a worm called Trojan:Win32/CryptoBandits that spreads via USB drives, steals crypto wallet seed phrases and private keys, and swaps recipient addresses during transfers.

  • The malware has been infecting Windows PCs since February, spreading through infected USB drives with malicious .lnk shortcut files.
  • Once installed, it monitors the clipboard every 500ms for seed phrases, private keys, and wallet addresses, exfiltrating data over the Tor network.
  • It can silently replace a copied recipient address with an attacker's address before the user pastes it, redirecting funds.
  • The worm propagates by replacing documents on clean USB drives with identically named shortcut files, continuing the infection cycle.
  • Microsoft recommends disabling AutoRun, blocking .lnk execution on USB media, and restricting script hosts to prevent infection.
securityImpact 7/10
Why our editor rated this negative

This is a clear security threat to crypto users. A sophisticated worm actively steals wallet credentials and redirects funds, which is negative for anyone holding crypto on Windows machines.

Read the full story at CoinDesk

Coinporta summarises news for fast scanning. Full reporting belongs to the source.

Last updated 20 Jun 2026

Share
Back to all news
Newsletter

One short email
per week.

Hand-picked crypto picks, rate moves and country alerts. No spam.

One short email per week. Unsubscribe anytime.