Attack Shark R85 HE Keyboard Confirmed as BadUSB Malware on Amazon

A user reported that the Attack Shark R85 HE keyboard, sold by FREEWOLF US on Amazon, executed a BadUSB attack immediately upon plugging in. The device opened login pages for Microsoft services and LinkedIn, ran PowerShell commands to inventory installed apps (including LastPass), and downloaded malware. Windows Defender detected two threats—SoftwareBundler:Win32/Stallmonitz and Trojan:Win32/Skeeyah.A!bit—both requiring manual removal. The attack was confirmed to be targeted, not random, and Amazon classified the return as defective rather than malicious.