Microsoft has identified a new malware strain called CryptoBandits that spreads through infected USB drives. Once a USB device is plugged in, the malware operates silently in the background, replacing copied cryptocurrency wallet addresses with the attacker's address while also stealing stored seed phrases and private keys. As a result, users may unknowingly send funds directly to attackers without realizing their wallet information has been compromised.

From a market perspective, threats like this could further weaken retail investor confidence in self-custody solutions, particularly among newcomers to crypto. To stay protected, avoid connecting USB drives from unknown sources, always double-check wallet addresses before confirming transactions, and consider using a hardware wallet that remains isolated from internet-connected devices. Ultimately, safeguarding crypto assets remains the responsibility of each individual user.