CloudSEK reports that a fake Windows 11 update is being used to distribute an information‑stealing malware targeting cryptocurrency wallets. The campaign uses a deceptive domain to trick users into downloading the malicious installer, which then deploys a crypto‑stealer designed to extract wallet data and sensitive credentials. The malware establishes persistence, communicates with attacker-controlled servers, and exfiltrates stolen information. As cryptocurrency adoption grows, threat actors increasingly exploit fake software updates to compromise users, highlighting the need for strict verification and security awareness.

Join for free to read