Fake MAS Windows activation domain used to spread PowerShell malware
smurda Friday, December 26, 2025
Summary
A malicious domain impersonating the Microsoft Activation Server (MAS) is being used to distribute PowerShell-based malware. The malware aims to steal sensitive information and provide remote access to attackers.
3
0
Summary
bleepingcomputer.com