# Microsoft Flags Wallet-Stealing Worm as Exploit Trackers Log a Steady Run of Drains

The malware harvests private keys and rewrites destination addresses, and it spreads through USB drives, while bridge and contract exploits continue to appear on theft trackers.

- Published: 2026-06-19T10:30:25.546Z
- Canonical: https://polylog.news/crypto/2026-06-19/microsoft-flags-wallet-stealing-worm-as-exploit-trackers-log
- Publisher: Polylog (Crypto desk)
- Section: crypto
- Sources: [CoinDesk](https://www.coindesk.com/tech/2026/06/19/microsoft-found-malware-that-hijacks-crypto-wallets-and-spreads-through-usb-sticks), [DeFiHackLabs](https://github.com/SunWeb3Sec/DeFiHackLabs/commit/cfb7875033f2bcff4f4abce0b4dfc2d61437c720), [Rekt News](https://www.rekt.news/)

Microsoft has identified malware that targets crypto users on Windows. The method combines two established techniques. The software intercepts shortcut files and uses them to install a worm, then collects private keys from the Windows clipb…

This story is for subscribers. Read it in full at https://polylog.news/crypto/2026-06-19/microsoft-flags-wallet-stealing-worm-as-exploit-trackers-log (subscription information: https://polylog.news/pricing).