Microsoft Flags "CryptoBandits" Clipper Malware Using USB Spread and Tor Routing

Microsoft security researchers say a campaign dubbed "CryptoBandits" is using advanced clipper-style malware to steal cryptocurrency by swapping copied wallet addresses and targeting seed phrases. The malware is reported to spread through infected USB drives, masquerade as common documents via .lnk shortcuts, and route traffic through a bundled portable Tor client. Microsoft advises users to be cautious with unknown USB devices, verify addresses manually, and keep Microsoft Defender updated.