Crypto Alert: New Malware “Stealka” Targets Wallets and Browsers
What Is Stealka? A Sneaky New Threat
Cybersecurity experts at Kaspersky have uncovered a dangerous new malware called Stealka. First spotted in November 2025, this infostealer targets Windows users. It steals sensitive data from browsers and cryptocurrency wallets. Moreover, it spreads cleverly. Attackers disguise it as game mods, cheats, or pirated software. They upload these files to trusted sites like GitHub, SourceForge, and Google Sites. For example, fake Roblox mods or cracked tools like Microsoft Visio lure victims. Once downloaded and run, Stealka activates quietly.
How It Attacks: Wallets, Passwords, and More
Stealka is sophisticated. It scans over 100 browsers (Chrome, Firefox, Edge, Brave, etc.). It grabs autofill data – logins, addresses, card details. Additionally, it targets 115 browser extensions. These include crypto wallets (MetaMask, Trust Wallet, Binance, Coinbase, Phantom, Exodus) and 2FA apps (Google Authenticator, Authy). Furthermore, it hunts standalone wallets for private keys, seed phrases, and file paths. The malware can even install hidden crypto miners. It drains your PC resources. Therefore, if infected, attackers could drain your wallets completely.
Spreading Tactics: Fake Mods and Pirated Software
The danger lies in deception. Cybercriminals use compromised accounts on gaming sites. They upload infected files. Platforms like GitHub and SourceForge look safe. But fakes slip through. Most victims are in Russia, Türkiye, Brazil, Germany, and India. However, anyone downloading unofficial mods risks it. Kaspersky blocked all known cases so far. No major thefts reported yet. Still, the potential is huge.
Stay Safe: Simple Steps to Protect Yourself
Prevention is easy. Avoid pirated software, cracks, or unofficial mods. Download only from official sources. Use reliable antivirus (Kaspersky blocked Stealka). Enable updates. Moreover, use hardware wallets for crypto. They keep keys offline. Don’t store seeds in browsers or notes. Use password managers. Enable 2FA (app-based, not SMS). Finally, scan suspicious files. Stay vigilant, one click can cost everything.