Researchers have uncovered the real identity of the developer behind the CypherRAT and CraxsRAT malware. The developer, known online as 'EVLF DEV', has been operating out of Syria for the past eight years and has made over $75,000 selling the RATs to various threat actors. Cyfirma, the cybersecurity company leading the investigation, also found that EVLF is a malware-as-a-service (MaaS) operator. The developer has been offering CraxsRAT, a dangerous Android RAT, on a surface web store for the past three years. The RAT allows threat actors to customize attacks and access device data. #Cybersecurity #Malware #RATs #Cybercrime #Syria

https://www.securityweek.com/researchers-uncover-real-identity-of-cypherrat-and-craxsrat-malware-developer/