Fake MAS Domain Distributes PowerShell Malware
A malicious domain mimicking Microsoft's MAS tool was used to spread Cosmali Loader malware via PowerShell, exploiting user typos to infect Windows systems with cryptomining and RAT malware. Users are advised to verify commands and avoid executing untrusted remote code to prevent infection.