The hackers never take a break, and let alone if the cryptocurrency market is bullish. Your cryptocurrencies might be safe in your device or favorite exchange, but they always have their ways to steal the coins. A crypto-stealing malware disguised as a feature of Windows 10 is the last of those ways.

To be more specific, the hackers designed a fake website to download DirectX 12 in Windows 10. This pack of functionalities works to develop and run multimedia content, especially videogames. So, a lot of gamers, for example, might want to update the DirectX and find the awful surprise instead.

The phishing page was designed to detail. It includes a privacy policy, disclaimer, contact form, and, at the first sight, everything that a legitimate web should have. If the user clicks on the Download buttons, they will be redirected to an external page to get the files. Once installed, the malware will silently harvest the user’s data, including cookies, files, and information about the system and programs. It can even take screenshots.


But probably the worst part is that the malware looks for cryptocurrency wallets inside the system to steal the credentials, passwords, and, ultimately, the funds stored in there. So, the malicious software can identify wallets like Ledger Live, Waves.Exchange, Coinomi, Electrum, Electron Cash, BTCP Electrum, Jaxx, Exodus, MultiBit HD, Aomtic, and Monero.

All the stolen data is compressed and sent automatically to the hackers involved. So, all your wallets might be emptied in no time if you’re not careful enough.

Avoid crypto-stealing malware

The aforementioned is a classic phishing case. Let’s remember that phishing occurs when some hackers make a fake version of something (website, app, software, message, call…) to deceive people and get from them valuable information, like bank or cryptocurrency credentials and keys.

So, the hackers clone websites or software, or impersonate some service, company, or person via email or call to achieve their malicious goals. Avoid this type of crypto-stealing malware is kind of easy, though.

First of all, download files and software only from the official websites (Microsoft, in this case). Check twice the URLs to be sure. Likewise, it’s important to keep updated the OS, antivirus, and firmware of all your smart devices, and don’t opening links or attached files from dubious emails.

Featured Image by Elchinator / Pixabay

Wanna trade Bitcoin and other tokens? You can do it safely on Alfacash! And don’t forget we’re talking about this and a lot of other things on our social media.

Twitter * Telegram * Facebook * Instagram * Vkontakte


Literature professional in the crypto-world since 2016. Writer, researcher, and bitcoiner. Working for a better world, with more decentralization and coffee.

Write A Comment