RevengeHotels, a threat group active since 2015, has launched a new campaign targeting the hospitality sector in Latin America. The group has evolved its tactics, now utilizing AI-generated code and the advanced VenomRAT malware. Their primary attack vector remains phishing emails with invoice themes, but they've expanded to include fake job applications. The campaign primarily targets Brazilian hotels, with some attacks directed at Spanish-speaking markets. VenomRAT, an evolution of QuasarRAT, offers enhanced capabilities including anti-kill protection, USB spreading, and advanced stealth techniques. The threat actors are leveraging AI to generate more sophisticated phishing lures and malicious code, indicating a significant advancement in their operational capabilities.