https://bit.ly/3R8Q34L - 🔍 The CYFIRMA team has unmasked MaaS operator EVLF DEV, creator of CypherRAT and CraxsRAT. Over 100 threat actors have bought these RATs in 3 years, allowing control over victim devices. #Cybersecurity #Malware 🚀 ‘Malware-as-a-service’ is aiding cybercriminals to begin operations. EVLF and others are helping threat actors with specific malware tools, focusing on a destructive Android RAT. #MaaS #AndroidRAT #CyberCrime 💼 EVLF's web shop has boosted CraxsRAT's reach. Transactions are in cryptocurrency, and the operation is based in Syria. Details about EVLF were identified. #Cryptocurrency #ThreatActors 📱 CraxsRAT, targeting Android devices, has been misreported as affecting Windows OS. Cracked versions with backdoors contribute to confusion. #AndroidSecurity #MalwareResearch 💣 Technical analysis shows CraxsRAT as a dangerous Android RAT. Customization features make the generated package deadly and enable live screen recording. #AndroidRAT #CodeAnalysis 🏦 EVLF's crypto wallet balance is 75,000 USD over 3 years. A temporary freeze by Freewallet led to a thread by EVLF, confirming the Syria operation. #CryptoWallet #CyberInvestigation 🛡️ EVLF's CraxsRAT is perilous for Android. Protection includes caution in downloading, avoiding suspicious links, updates, and reliable security software. #CyberProtection #RAT 📚 Recommendations include training, updates, encryption, mobile device management, backups, incident planning, user support, app review, cautious permissions, security software, and safe networks.