Home

Red Sky® Alliance has been serving information security professionals for over twelve years. We invite businesses and organizations, from enterprises to small businesses, to learn more about cyber threats and how to avoid them. We provide TLP White and Green cyber threat reporting for targeted industry segments, international reports, and malware/bot analyses.

A privately held USA-owned cyber threat intelligence firm that delivers proprietary cyber threat intelligence datasets and services. Our company provides insightful, actionable intelligence in formats best suited to your strategic, operational, and tactical needs.

Let us better prepare you and your team for new cyber threats.

Redskyalliance.org offers free access to all, and no salesperson will call.

Phishing - Again/Still

Posted by Bill Schenkelberg on August 7, 2025 at 12:05pm

A recent Varonis report exposes a rising threat: cyber criminals exploiting Microsoft OneNote to launch “native” phishing campaigns via Microsoft 365. OneNote is a well-established digital note-taking app that provides a single place for keeping users' reminders, research and project information. These attacks exploit trust in legitimate collaboration tools, combining social…

VPS Used for Monero Mining

Posted by CyberDog on August 7, 2025 at 8:00am

The Fortinet team recently investigated a cluster of virtual private servers (VPS) used for Monero mining. The identified samples are associated with prior H2miner campaigns that researchers documented in 2020 and have since been updated with new configurations. H2Miner is a Crypto mining botnet that has been active since…

Safety app TEA is not Safe

Posted by Jim McKee on August 6, 2025 at 12:00pm

The dating safety app Tea was hacked, resulting in the leak of images, posts, and comments from thousands of users who shared anonymous “red flag” reports on men. Tea is a woman-only dating safety app launched in 2023 that lets users assess and review potential partners using real-time safety tools, not matchmaking. The app has over 1.6 million members in the US. It allows them to…

Russian Internet Shutdowns

Posted by Bill Schenkelberg on August 6, 2025 at 8:00am

Russian authorities shut down mobile internet services more than 2,000 times in July, which is a record monthly high, as Russia escalates its digital restrictions in the name of cyber security. This presented through a report from the nonprofit Russian Internet Protection Society. Local authorities often cut off access to the internet, citing “national security” amid Ukrainian drone…

Verizon Records Found on Web Forum

Posted by Jim McKee on August 5, 2025 at 8:00am

The Cybersecurity Team at SafetyDetectives has uncovered a post on a clear web forum where a threat actor claimed to be selling a database containing 61 million records allegedly belonging to Verizon customers. The data, packaged in a 3.1 GB CSV/JSON file and dated as “2025,” was offered for purchase on a platform known for hosting discussions on database leaks, cracks, and downloads.…

“Choo-Choo” US Railroads in Cyber Danger

Posted by Jim McKee on August 4, 2025 at 12:00pm

A recently disclosed vulnerability in train braking systems could let hackers remotely stop trains with relatively simple and inexpensive hardware, potentially causing derailments, according to the US Cybersecurity & Infrastructure Security Agency (CISA). The high-severity vulnerability, tracked as CVE-2025-1727, involves weak authentication in the protocol used to send what are…

Chaos Ransomware

Posted by Bill Schenkelberg on August 4, 2025 at 10:29am

Cisco Talos researchers on 24 July 2025 detailed Chaos, a newer Ransomware-as-a-Service (RaaS) group that specializes in big company hunting and double extortion attacks (meaning it both encrypts victim files and steals data for potential leaking). According to Cisco Talos, the group emerged in early February 2025 and appears to be made up of former BlackSuit ransomware gang members…

Ghost Students Haunt Education

Posted by Bill Schenkelberg on August 3, 2025 at 8:20am

The education sector is haunted by a significant fraud problem where fake students impersonate celebrities and employ other identity techniques to steal resources and money from legitimate students. While sorting through student submission applications, the name Brad Pitt appears. Admission office employees believe it must be a joke or an accident, but soon they find another…

REDXRAY

CLICK HERE FOR MORE INFORMATION

In the News

2023 REDSHORTS

REDSHORT Webinars

Please Join our REDSHORT webinars. 'RED' as something important from Red Sky Alliance, and 'SHORT' in 10 minutes or less weekly. We will cover highlights of trending topics.

REGISTER HERE

Cyber Security Blog

You need to be a member of Red Sky Alliance to add comments!

Comments are closed.

Comments

Bill Schenkelberg August 4, 2025 at 10:32am

https://www.bitdefender.com/en-us/blog/hotforsecurity/french-submar...

French submarine secrets surface after cyber attack

European defence giant Naval Group has confirmed that it is investigating an alleged cyber attack which has seen what purports to be sensitive intern…
Bill Schenkelberg August 1, 2025 at 10:43am

https://www.express.co.uk/news/world/2089965/hackers-french-naval-g...

French military left reeling by cyberattack

More than 30GB of data was dumped online by the cyber criminals, who claim to possess more sensitive documents
Bill Schenkelberg July 31, 2025 at 9:03am

https://www.yahoo.com/news/articles/minnesota-mobilizes-national-gu...

Minnesota mobilizes National Guard after major St. Paul cyberattack

Systems have been shut down in Minnesota to protect St.Paul from further intrusions following cyberattack.
Bill Schenkelberg July 28, 2025 at 10:01am

https://www.devdiscourse.com/article/technology/3519736-cyber-attac...

Cyber Attack Grounds Aeroflot Flights | Technology

Russian prosecutors have launched an investigation into a cyber attack on Aeroflot's computer systems, which led to flight cancellations. The hacking…
Bill Schenkelberg July 25, 2025 at 1:14pm

https://talkbusiness.net/2025/07/fort-smith-public-school-district-...

Fort Smith Public School District working to resolve cyber attack disruption - Talk Business & Poli…

The Fort Smith Public School District has not fully restored phone and internet systems disrupted by a cyber attack that happened on or before July 2…
Bill Schenkelberg July 23, 2025 at 9:32am

https://www.techradar.com/home/smart-home/angry-google-home-users-a...

Google seems to have forgotten about the smart home, as current Google Home devices get older and b…

Multiple issues on multiple devices
Bill Schenkelberg July 22, 2025 at 11:12am

https://www.nbcnews.com/tech/security/microsoft-issues-attack-attac...

Microsoft issues an 'active attacks' alert over hack of SharePoint file sharing software

The hack is known as a “zero day” attack because it targeted a previously unknown vulnerability.
Bill Schenkelberg July 21, 2025 at 10:19am

https://thehackernews.com/2025/07/microsoft-releases-urgent-patch-f...

Microsoft Releases Urgent Patch for SharePoint RCE Flaw Exploited in Ongoing Cyber Attacks

Microsoft warns of active SharePoint exploits affecting on-prem users; 54 victims confirmed in major attack.
Bill Schenkelberg July 20, 2025 at 1:52pm

https://www.asiaone.com/singapore/critical-infrastructure-singapore...

Critical infrastructure in Singapore under attack by cyber espionage group: Shanmugam

SINGAPORE - The authorities are dealing with an ongoing attack on Singapore's critical information infrastructure by a state-sponsored cyber espionag…
Bill Schenkelberg July 17, 2025 at 9:21am

https://www.insurancebusinessmag.com/us/news/breaking-news/supplier...

Supplier risk is breaking the size myth in cyber

Even the biggest firms can be taken down by this vulnerability

of 115

This reply was deleted.

Red Sky Alliance

For more information about Red Sky Alliance, follow the link, ABOUT

#xg { position:relative;top:120px; } #xn_bar { top:120px; }

Hello, you need to enable JavaScript to use Red Sky Alliance.

Please check your browser settings or contact your system administrator.

Home

TRENDING

Phishing - Again/Still

VPS Used for Monero Mining

Safety app TEA is not Safe

Russian Internet Shutdowns

Verizon Records Found on Web Forum

“Choo-Choo” US Railroads in Cyber Danger

Chaos Ransomware

Ghost Students Haunt Education

Note: this page contains paid content.

REDXRAY

In the News

2023 REDSHORTS

REDSHORT Webinars

Cyber Security Blog

Comments

Red Sky Alliance