Microsoft warns of USB-delivered Crypto Clipper malware

Microsoft researchers analyzed a USB worm called Crypto Clipper that spreads via malicious.LNK files on removable drives. The malware swaps cryptocurrency wallet addresses on the clipboard, exfiltrates seed phrases and private keys, and connects to a Tor C2 server for remote code execution.