Windows Users Beware: Styx Stealer Malware Can Clip Your Crypto Transactions

cryptonews.com:

Ruholamin Haqshanas is a contributing crypto writer for CryptoNews. He is a crypto and finance journalist with over four years of experience. Ruholamin has been featured in several high-profile crypto...

Cybersecurity researchers at Check Point Research have uncovered a new threat targeting cryptocurrency users, dubbed the Styx Stealer malware.

The malicious software is capable of stealing a wide range of sensitive information, including cryptocurrency, by employing a technique known as clipping.

This method allows the malware to intercept and alter the recipient’s wallet address during transactions, diverting funds to the attacker’s account.

Styx Stealer is being offered on a rental basis through its developer’s website, with prices set at $75 per month or $350 for a lifetime license.

Initially launched in April, the malware has already been implicated in numerous attacks.

Notably, it is derived from an older malware variant known as Phemedrone Stealer, but with enhanced features including new detection evasion tactics and the addition of a crypto clipper function.

The malware’s discovery came about unexpectedly when the developer experienced a data leak during debugging.

The incident allowed researchers to trace the origins of Styx Stealer and uncover critical information about its operations.

It was revealed that the developer, based in Turkey, had amassed approximately $9,500 in cryptocurrency payments within the first two months of the malware’s release.

These payments were tracked to eight cryptocurrency wallets linked to the developer.

Styx Stealer primarily exploits a vulnerability in Microsoft Windows Defender, which was patched last year.

As a result, Windows users with up-to-date systems are not at risk.

However, those who