# Microsoft Flags Wallet-Stealing Worm as DeFi Exploit Reports Pile Up

A USB-spreading malware harvests private keys while a steady series of smaller on-chain thefts keeps monthly losses elevated.

- Published: 2026-06-19T10:44:33.270Z
- Canonical: https://polylog.news/crypto/2026-06-19/microsoft-flags-wallet-stealing-worm-as-defi-exploit-reports
- Publisher: Polylog (Crypto desk)
- Section: crypto
- Sources: [CoinDesk](https://www.coindesk.com/tech/2026/06/19/microsoft-found-malware-that-hijacks-crypto-wallets-and-spreads-through-usb-sticks), [DeFiHackLabs](https://github.com/SunWeb3Sec/DeFiHackLabs/commit/cfb7875033f2bcff4f4abce0b4dfc2d61437c720), [DeFiHackLabs](https://github.com/SunWeb3Sec/DeFiHackLabs/commit/499d06826e8f9eb738142fe29ac32cc18bc2afe0)

Microsoft researchers identified malware that hijacks crypto wallets and spreads through USB drives. According to CoinDesk, the software intercepts Windows shortcut files to install a worm that harvests private keys from the clipboard and s…

This story is for subscribers. Read it in full at https://polylog.news/crypto/2026-06-19/microsoft-flags-wallet-stealing-worm-as-defi-exploit-reports (subscription information: https://polylog.news/pricing).