Tag: tor based c2

1 article

USB drive plugged into a laptop on a cluttered office desk with cityscape in background.

Microsoft Exposes Windows Clipper Malware Campaign Using USB Worm.

Microsoft's security team has uncovered a sneaky malware campaign that's been secretly stealing cryptocurrency from Windows users since February 2026, using a clever combination of a USB worm and a stealthy Tor-based command center. The malware, known as a Windows Clipper, uses Windows Script Host and ActiveX to launch a Tor proxy and communicate with its command center.

Analyst 207Jun 18, 2026