# Microsoft Flags USB-Borne Wallet Malware as a Distinct Attack Surface Grows

Beyond smart-contract exploits, key-stealing malware that compromises the device itself is becoming a separate and expanding threat to self-custody, alongside a steady series of mid-size decentralized finance (DeFi) thefts.

- Published: 2026-06-22T10:29:30.461Z
- Canonical: https://polylog.news/crypto/2026-06-22/microsoft-flags-usb-borne-wallet-malware-as-a-distinct-attac
- Publisher: Polylog (Crypto desk)
- Section: crypto
- Sources: [CryptoSlate](https://cryptoslate.com/cryptobandits-malware-usb-wallet-theft/), [DeFiHackLabs](https://github.com/SunWeb3Sec/DeFiHackLabs/commit/c496513f8616fbb8774bd1411e81a5e2aa78db9a), [DeFiHackLabs](https://github.com/SunWeb3Sec/DeFiHackLabs/commit/a338f054b1a183ea920cccc81f47a0cd7c45003d)

Microsoft has warned of a malware family it links to a campaign that uses USB drives to reach crypto wallets on compromised machines, CryptoSlate reported. The research highlights a threat that avoids on-chain defenses entirely. A compromis…

This story is for subscribers. Read it in full at https://polylog.news/crypto/2026-06-22/microsoft-flags-usb-borne-wallet-malware-as-a-distinct-attac (subscription information: https://polylog.news/pricing).