Would you run AdobeReader.exe from a days-old company called "TrustConnect Software PTY LTD" just because they managed to purchase an Extended Validation certificate?
It turns out this "vibe-coded" platform wasn't a legitimate RMM, it was Malware-as-a-Service sold to criminals for $300 per month.
From fake incorporation to disruption by partners in under a month. The full blog is out now with me, @selenalarson and the rest of the @proofpoint @threatinsight team.
https://www.proofpoint.com/us/blog/threat-insight/dont-trustconnect-its-a-rat

This article that starts getting traction claims that the official RVTools website was distributing a malicious installer leading to Bumblebee. I see zero evidence of this actually being the case.
There is however at least two separate current malvertising/SEO campaigns, one leading to Bumblebee and one leading to SMOKEDHAM/Thundershell, but it's not from the official website.