Skip to content
Tech News
← Back to articles

Trojan abuses Microsoft Phone Link app to steal your passwords

2026-05-05 | original
read original get Microsoft Phone Link Security Kit → more articles
Why This Matters

The discovery of the CloudZ Trojan exploiting the Microsoft Phone Link app highlights a new security threat that could compromise user credentials and personal data. As Phone Link is preinstalled on Windows devices, this vulnerability underscores the importance of vigilance and timely security updates for consumers and the tech industry alike. Protecting these integrated features is crucial to prevent widespread malware attacks and safeguard user privacy.

Key Takeaways

Getty

Follow ZDNET: Add us as a preferred source on Google.

ZDNET's key takeaways

The CloudZ Trojan steals data through Microsoft Phone Link.

The campaign has been active since at least January 2026.

Follow our practices to protect yourself from the CloudZ Trojan.

Cisco Talos researchers have revealed the exploits of a Remote Access Trojan (RAT) that can steal your credentials the moment you launch the Microsoft Phone Link app to connect your phone to your PC.

What is Microsoft Phone Link?

Microsoft Phone Link is an app you may not be aware of, but it comes preinstalled on Windows 10 and 11. Formerly branded as Your Phone, this application allows users to connect their phone to a Windows PC via Bluetooth and Wi-Fi.

Also: Windows changes are coming: Here's how to get a sneak peek at what's next

... continue reading

Explore topics: microsoft phone link cloudz trojan remote access trojan cisco talos windows 10
Related:
CloudZ malware abuses Microsoft Phone Link to steal SMS and OTPs
Executable installer will stop being released with Python 3.16
I replaced my dad's aging Lenovo desktop with this Dell model - and don't regret it
Firestarter malware survives Cisco firewall updates, security patches
Google's new Windows app is yet another way to access Gemini

© 2026 GoKawiil

About | Editorial Policy | Contact