Microsoft has issued a warning regarding a new sophisticated malware specifically targeting crypto wallets. This malware, capable of bypassing security systems, threatens 20 of the most popular crypto wallets, including Coinbase and MetaMask.

Malware Threatens Coinbase and MetaMask Crypto Wallets

Microsoft published a worrying report in November 2024 about a new threat named StilachiRAT. This discovery comes directly from Microsoft researchers specializing in incident response.

The malware operates as a remote access Trojan (RAT) and primarily targets users of the Google Chrome extension who own crypto wallets.

This malware is distinguished by its ability to deploy “sophisticated techniques to evade detection, persist in the target environment, and exfiltrate sensitive data,” according to Microsoft’s own words.

Researchers clarified that StilachiRAT can not only steal information from crypto wallets but also steal all credentials stored in the browser, including usernames and passwords.

Among the 20 targeted crypto wallets are some of the most widely used on the market: MetaMask, Coinbase Wallet, Phantom, OKX Wallet, and BNB Chain Wallet. This attack thus represents a potential threat to millions of users worldwide who use these services to manage their digital assets.

How to Protect Against This New Threat

Although Microsoft states that the malware has not yet been widely circulated, the threat remains serious. Microsoft’s security team has not been able to identify the entity responsible for this attack, further complicating the response and heightening concerns among cybersecurity experts.

In light of this situation, Microsoft has established several mitigation guidelines to protect potentially targeted users. The first recommendation is to install reliable antivirus software and keep it updated. This basic measure can significantly contribute to the detection and elimination of StilachiRAT before it causes damage.

Crypto wallet users should also consider other preventive security measures: use two-factor authentication (2FA) for all trading platforms, store high-value cryptos in hardware wallets disconnected from the internet, and remain vigilant against phishing attempts that could install the malware.

Microsoft has highlighted the importance of this alert in its official blog: “Due to its stealth capabilities and rapid changes in the malware ecosystem, we share these findings as part of our ongoing efforts to monitor, analyze, and report on the evolving threat landscape.”

This new threat underscores the critical importance of cybersecurity in the crypto ecosystem. As the value and adoption of digital assets increase, attacks targeting crypto holders are multiplying and becoming more sophisticated. In light of this reality, a proactive approach to digital security is essential for all crypto investors.