Home

Red Sky® Alliance has been serving information security professionals for over twelve years. We invite businesses and organizations, from enterprises to small businesses, to learn more about cyber threats and how to avoid them. We provide TLP White and Green cyber threat reporting for targeted industry segments, international reports, and malware/bot analyses.

A privately held USA-owned cyber threat intelligence firm that delivers proprietary cyber threat intelligence datasets and services. Our company provides insightful, actionable intelligence in formats best suited to your strategic, operational, and tactical needs.

 

Let us better prepare you and your team for new cyber threats.

Redskyalliance.org offers free access to all, and no salesperson will call.

TRENDING

Inotiv Ransomware Attack Confirmed

Posted by Mac McKee on August 28, 2025 at 6:30am

13698935678?profile=RESIZE_400x Pharmaceutical company Inotiv has notified the US Securities and Exchange Commission (SEC) that its business operations took a hit after hackers compromised and encrypted its internal systems.  The incident, the organization said in a Form 8-K filing, occurred on 08 August 2025, and prompted…

Read more…

Are Humans Smarter than AI?

Posted by Jim McKee on August 27, 2025 at 12:00pm

13700806294?profile=RESIZE_400x A recent report by Salt Security highlights a critical warning: without proper Application Programming Interface (API) discovery, governance, and security, the very technology meant to drive smarter customer engagement could open the door to cyber-attacks or data leakage.  The research also reveals an increasing trust gap between businesses that deploy agentic AI for external…

Read more…

UpCrypter Malware

Posted by Bill Schenkelberg on August 27, 2025 at 7:55am

13698921873?profile=RESIZE_400x FortiGuard Labs recently identified a phishing campaign leveraging carefully crafted emails to deliver malicious URLs linked to convincing phishing pages.  These pages are designed to entice recipients into downloading JavaScript files that act as droppers for UpCrypter Malware that ultimately deploys various remote access tools (RATs).

The attack chain begins with a small,…

Read more…

No Honor Among Cyber Thieves

Posted by Mac McKee on August 27, 2025 at 6:30am

13698935656?profile=RESIZE_400x A threat actor has been observed “patching” a vulnerability post exploitation, likely in a bid to lock out other adversaries and secure exclusive access.  The novel tactic was detected by Red Canary researchers in a cluster of activity targeting a flaw in Apache ActiveMQ, an open-source message broker, to gain persistent access on cloud-based Linux systems.  The critical…

Read more…

Qilin Shuts Inotiv Down

Posted by Bill Schenkelberg on August 26, 2025 at 12:05pm

13698771688?profile=RESIZE_400x A ransomware attack has forced drug research firm Inotiv to shut down critical systems, resulting in operational disruptions.  Inotiv is an analytical drug discovery and development service that works with various pharmaceutical companies.  It employs over 2,000 research specialists and reports an annual revenue of over $500 million.  According to a regulatory filing with the US…

Read more…

Canadian Parliament’s Data Breach

Posted by Mac McKee on August 26, 2025 at 10:31am

13698934855?profile=RESIZE_400x Canada's cyber security agency is investigating a significant data breach at the national parliament caused by an unknown threat actor targeting employee information.  The Canadian House of Commons has informed employees of an information breach and the Commons said that a malicious hacker was able to exploit a known Microsoft vulnerability to get access to a database that contains…

Read more…

The Significant Spike

Posted by Jim McKee on August 26, 2025 at 8:00am

13698744277?profile=RESIZE_400x Cybersecurity researchers are warning of a "significant spike" in brute-force traffic aimed at Fortinet SSL VPN devices.  The coordinated activity, per threat intelligence firm GreyNoise, was observed on 03 August 2025, with over 780 unique IP addresses participating in the effort.  As many as 56 unique IP addresses have been detected over the past 24 hours.  All the IP addresses have…

Read more…

Stealing Made Easy

Posted by Jim McKee on August 25, 2025 at 12:00pm

13698736680?profile=RESIZE_400x Why hack when hackers are willing to sell guaranteed access to breached networks?  Increasingly, cybercrooks agree they would rather outsource than bother with the tedium of actual network penetration, leading to a flourishing initial access market.  Remote access to a victim's network now retails for an average price of $2,700, although about 40% of what's being sold goes for much…

Read more…

REDXRAY

CLICK HERE FOR MORE INFORMATION

In the News

2023 REDSHORTS

REDSHORT Webinars

Please Join our REDSHORT webinars. 'RED' as something important from Red Sky Alliance, and 'SHORT' in 10 minutes or less weekly. We will cover highlights of trending topics.

REGISTER HERE

Cyber Security Blog

You need to be a member of Red Sky Alliance to add comments!

Comments are closed.

Comments

This reply was deleted.

Red Sky Alliance

For more information about Red Sky Alliance, follow the link, ABOUT