Fake MAS Windows activation domain used to spread PowerShell malware

A typosquatted domain impersonating the Microsoft Activation Scripts (MAS) tool was used to distribute malicious PowerShell ...
ZDNet

NSA, CISA say: Don't block PowerShell, here's what to do instead

Cybersecurity authorities from the US, the UK, and New Zealand have advised businesses and government agencies to properly configure Microsoft's built-in Windows command-line tool, PowerShell – but ...