Just a friendly reminder

[5W-KILO]

This is just a friendly reminder as why it's still better you invest in a open source hardware wallet first before buying your Bitcoin, things are changing so fast that if what you are using to store your Bitcoin or crypto isn't made specifically ( hardware device ) for this reasons you are taking a big risk.




The day you chose to get a good hardware wallet that's open source is where you mind still stop skipping when such similar news like this shows up online.

A airgapped, open source, hardware wallet is a good investment, that costs less than most mid range smartphones, how you lay your bed is how you will sleep on it.

[Charles-Tim]

Why not add the link?

According to what I found out about it, it is true:
https://www.microsoft.com/en-us/security/blog/2026/06/17/crypto-clipper-uses-tor-worm-like-propagation-for-persistence-control/

According to Microsoft Threat Intelligence and Microsoft Defender Experts, users devices have beenn infected by the malware since February of this year.

This malware comprises of a worm component that ensures propagation and a clipper/stealer component that harvests and exfiltrates cryptocurrency wallet information.

[Alpha Marine]

I think it's unrealistic to expect people to buy a hardware wallet first before they buy their Bitcoin. As much as I agree that it is better for security, people who are buying Bitcoin newly need time to understand all these, how to get them and how they are different.
I think if they just know not to put untrusted apps, extensions, videos and things like that on their phone and don't click phishing links, etc, you should be fine, if you use a trusted open source wallet.
Using a hardware wallet alone doesn't keep you safe. There are still security guidelines you need to follow.

[Mia Chloe]

~snip

Hardware wallets are really good but honestly they are not mandatory although it's crucial that if you ever intend on getting one it's best you get an open source one. The only problem I see with airgapping is little mistakes can literally mess everything up and not everyone can walk through the process cleanly.

Nevertheless news like these sadly don't surprise me anymore and one of the reasons they'll continue to come up aside from human errors is the fact that hot wallets will always be a thing. It's similar to how people get defrauded from their banks.

[Cricktor]

I don't say Linux or MacOS is safer than Windows, but still Windows has the largest market share and is therefore very relevant and interesting for malware creators. The more users you can attack, the better. It's a rather simple logic. And because there are significantly less Linux users to attack, it's not very likely that malware will focus on a niche user group. Therefore a Linux setup is very likely a more safer one to handle your crypto stuff.

Same applies likely to MacOS users, though they may be a bit more interesting to target because they might have more money to afford the expensive Fruit gear. Frankly, I don't know if this assumption really holds water.

Why people infect their devices where they handle their crypto wallets? Likely because they use their daily driver also to handle their wallets. Not a particularly safe setup, to be honest.

Likely also some people are reckless and use cracked Windows software, games or whatnotelse on their devices where they handle their wallets. Definitely not a safe setup for sure if you run cracks or warez from shady sources.

A decent hardware wallet protects your private keys from malware. It only protects your transactions when you carefully verify ALL details of a transaction on the independant display of the hardware wallet BEFORE you sign and later broadcast the transaction. NEVER skip to check all details of your transaction carefully before you sign it. This avoids that malware replaces output addresses to ones that you didn't chose to send coins to.

[promise444c5]

This isn’t different to the famous  clipboard malware[ replace your copied address with attacker’s] and it’s quite simple to avoid.. Don’t trust, always verify.. and you will detect such. But it’s still classified as malware and could always be capable of more than just address replacement .

Thus, cold storage is very important but the ‘verify’ aspect still remains same. Remember , you can do everything right and still end up losing it all.

[salad daging]

I think it's unrealistic to expect people to buy a hardware wallet first before they buy their Bitcoin. As much as I agree that it is better for security, people who are buying Bitcoin newly need time to understand all these, how to get them and how they are different.
I think if they just know not to put untrusted apps, extensions, videos and things like that on their phone and don't click phishing links, etc, you should be fine, if you use a trusted open source wallet.
Using a hardware wallet alone doesn't keep you safe. There are still security guidelines you need to follow.

Beginners usually won't think about hardware wallets because what they think about is where to buy bitcoin safely, I used to do that too, after understanding for a few years I finally decided to buy hardware for high security again.

Yep as long as our devices are not infected with unclear applications everything will be fine, as long as you don't click too carelessly, especially in accessing phishing sites or pirated sites where there are advertisements that require you to download unclear files automatically then it needs to be aware.

As long as they understand the use of bitcoin, I think they will think about HW for their own assets.