Cybercriminals are taking advantage of the final phase of the Windows 11 upgrade announced on Jan. 26 by installing RedLine Stealer malware for those who download a fake installer. The malicious actor registered the domain “windows-upgraded[.]com,” which they then used to spread malware by tricking users into downloading and running the fake installer, according to the researchers. They say the attackers have padded the files to keep them from being scanned by antivirus and other scanning controls, which increases the possibility of the malware being installed.”]
Source: https://www.databreachtoday.com/fake-windows-11-upgrade-installers-add-redline-malware-a-18491