Several folks here have already posted about this unusual malware attack via keyboard combinations and Windows PowerShell, but it still fills me with dread so I wrote about it:
Many GitHub users this week received a novel phishing email warning of critical security holes in their code. Those who clicked the link for details were asked to distinguish themselves from bots by pressing a combination of keyboard keys that causes Microsoft Windows to download password-stealing malware. While it's unlikely that many programmers fell for this scam, it's notable because less targeted versions of it are likely to be far more successful against the average Windows user.
https://krebsonsecurity.com/2024/09/this-windows-powershell-phish-has-scary-potential/