Microsoft Shuts Down Malware That Steals Your Passwords and Money

Microsoft just shut down a massive network of criminal servers that were stealing passwords, banking details, and cryptocurrency from families around the world. The Digital Crimes Unit took down more than 200 command and control servers running two related infostealers: StealC and Amadey. This is important because these programs often work silently on infected computers, stealing information for months before victims notice.

The Details

Infostealers are malicious programs that quietly collect your personal information after they get onto your device. StealC and Amadey work as a team. Amadey typically arrives first, often hidden inside pirated software, fake software updates, or sketchy downloads. Once installed, it operates like a delivery service for cybercriminals, installing additional malware including StealC.

StealC then gets to work stealing your stored passwords, browser cookies (which keep you logged into websites), credit card details, and cryptocurrency wallet information. It even grabs session tokens, which let criminals access your accounts without needing your password at all. The stolen data gets sent to servers controlled by criminals, who either use it themselves or sell it to other bad actors.

Microsoft's takedown disrupted the infrastructure that allowed these programs to communicate with their criminal operators. Without these servers, the malware can't send stolen data or receive new instructions. This doesn't automatically clean infected computers, but it significantly reduces the immediate threat.

Who Is Affected

Thousands of people globally had their devices infected, though Microsoft hasn't released specific numbers. Anyone who downloads software from unofficial sources faces higher risk. This includes people who use cracked versions of paid programs, click on suspicious email attachments, or download files from unfamiliar websites.

Families with shared computers are particularly vulnerable because one person's risky download can compromise everyone's information. Seniors and teens often face targeted attacks through convincing fake offers or game downloads that contain this malware.

What You Should Do Right Now

1. Run a full antivirus scan immediately using Windows Defender (built into Windows) or your trusted security software. Don't skip this step even if everything seems fine.

The Bigger Picture

Infostealers represent one of the fastest-growing cybercrime threats because they're effective and widely available to criminals. These tools have become cheaper and easier for bad actors to use, meaning attacks are increasing. Microsoft's action shows that major tech companies are fighting back, but new threats emerge constantly. Staying informed and maintaining good security habits protects your family far better than relying solely on law enforcement takedowns.

How GetCyberRight Can Help

Even after this takedown, stolen credentials from previous infections may still be circulating in criminal marketplaces. Our Breach Monitor tool helps families check whether their email addresses and passwords have been compromised and are being sold or traded online. Regular monitoring gives you early warning so you can change credentials before criminals use them against you. Think of it as a security alarm for your digital identity.