In May, we reported initial findings on RATicate, a group of actors spreading remote administration tools (RATs) and other information-stealing malware at least since last year. We tracked multiple malicious spam (“malspam”) email campaigns from the group, with attached installers that usually posed as documents related to financial transactions. In recent campaigns, the group’s tactics … Continue reading RATicate upgrades “RATs as a Service” attacks with commercial “crypter”