Home

Red Sky® Alliance has been serving information security professionals for over twelve years. We invite businesses and organizations, from enterprises to small businesses, to learn more about cyber threats and how to avoid them. We provide TLP White and Green cyber threat reporting for targeted industry segments, international reports, and malware/bot analyses.

A privately held USA-owned cyber threat intelligence firm that delivers proprietary cyber threat intelligence datasets and services. Our company provides insightful, actionable intelligence in formats best suited to your strategic, operational, and tactical needs.

Let us better prepare you and your team for new cyber threats.

Redskyalliance.org offers free access to all, and no salesperson will call.

DDoS Attacks Increasing

Posted by Jim McKee on September 17, 2025 at 12:00pm

In a recent warning to global organizations, cybersecurity firm Netscout has unveiled its latest DDoS Threat Intelligence Report for the first half of 2025, highlighting an unrelenting barrage of Distributed Denial-of-Service (DDoS) attacks that are increasingly sophisticated, geopolitically motivated, and amplified by artificial intelligence. Netscout's report, titled "Digital…

Philippine MIL Company Spied upon with Chinese EggStremeAgent

Posted by Bill Schenkelberg on September 17, 2025 at 7:55am

Incident responders discovered a novel malware framework while investigating an attack on a Philippine military company attributed to a government-backed hacking group from China. Cybersecurity company Bitdefender published a blog post this week about EggStreme, a multi-stage toolset that gave the alleged Chinese hackers backdoor access to conduct an espionage campaign. The core…

‘GhostAction’ Supply Chain Attack Hits Secrets in GitHub

Posted by Bill Schenkelberg on September 16, 2025 at 12:20pm

Cyber researchers have uncovered a large-scale software supply chain attack on GitHub dubbed “GhostAction”, which has exposed more than 3,300 secrets, including PyPI, npm, DockerHub, GitHub tokens,…

AI & Ransomware Together

Posted by Mac McKee on September 16, 2025 at 11:45am

A joint study by Cybersecurity at MIT Sloan (CAMS) and Safe Security has examined 2,800 ransomware incidents and found that a staggering 80.83%, or more than 2,272 attacks, were driven by artificial intelligence. This statistic is not theoretical; it's based on comprehensive, real-world data collected during 2023–2024.

The …

Salesloft Drift Breach

Posted by Jim McKee on September 16, 2025 at 8:00am

What began as a quiet investigation into suspicious Salesforce activity has escalated into one of the most significant SaaS supply chain incidents of the year. Google's Threat Intelligence Group (GTIG) reports that a threat actor, tracked as UNC6395, exploited compromised OAuth tokens from Salesloft's Drift integrations to extract data from multiple customers' Salesforce instances. The…

Hackers Exploit Grok

Posted by Jim McKee on September 15, 2025 at 12:00pm

Cybercriminals are abusing Grok AI, the conversational assistant built into X (formerly Twitter), to spread malware through a campaign researchers have dubbed "Grokking." The scheme was uncovered by Guardio Labs researcher Nati Tal, who found that attackers are leveraging Grok's trusted status on the platform to amplify malicious links hidden in promoted ads.…

Cyber Breaches Hurt Your Wallet

Posted by Bill Schenkelberg on September 15, 2025 at 8:05am

In a significant move toward accountability, Qantas Airways has reduced short-term bonuses for its executive leadership, cutting 15% of their pay considering a recent cyber breach that compromised customer data for millions. So, what happened, and what does it all mean for CISOs, their teams, and the broader corporate ecosystem? Qantas slashed short-term bonuses in fiscal 2025 for…

Agentic AI Manipulation

Posted by Jim McKee on September 12, 2025 at 12:00pm

Organizations today are often ambivalent about agentic AI because of both its unpredictable failures and its potential use in cybercrime. Agentic systems are increasingly being given more control and are operating autonomously, taking on complex tasks and decision-making processes on behalf of users. These are often conducted with minimal human oversight, and agentic AI systems are…

REDXRAY

CLICK HERE FOR MORE INFORMATION

In the News

2023 REDSHORTS

REDSHORT Webinars

Please Join our REDSHORT webinars. 'RED' as something important from Red Sky Alliance, and 'SHORT' in 10 minutes or less weekly. We will cover highlights of trending topics.

REGISTER HERE

Cyber Security Blog

You need to be a member of Red Sky Alliance to add comments!

Comments are closed.

Comments

Bill Schenkelberg September 15, 2025 at 8:55am

https://www.insurancebusinessmag.com/us/news/cyber/jlr-hack-raises-...

JLR hack raises prospect of COVID-style bailout - and questions for cyber cover

Is this enough to make clients see how much they need cyber coverage?
Bill Schenkelberg September 14, 2025 at 6:10pm

https://www.techradar.com/pro/security/vietnam-creditors-hit-by-cyb...

Vietnam confirms cyberattack on national credit data center as investigators assess scope of breach…

Vietnamese national credit information system was targeted
Bill Schenkelberg September 12, 2025 at 1:47pm

https://news.sky.com/story/jaguar-land-rover-shutdown-extended-afte...

Jaguar Land Rover shutdown extended after cyber attack

Firms across JLR's supply chain have warned the Business and Trade Committee of disruption to their businesses.
Bill Schenkelberg September 10, 2025 at 9:10am

https://www.kristv.com/news/local-news/in-your-neighborhood/nueces-...

Nueces County provides update on cyber attack: Nearly $2M in losses, recovery efforts underway

Nueces County officials provided an update Monday on the cybersecurity attack that has cost the county nearly $2 million, revealing that most funds a…
Bill Schenkelberg September 9, 2025 at 3:37pm

https://www.defenseone.com/policy/2025/09/white-house-cyber-office-...

‘Whole-of-nation’ effort needed to deter nation-state hackers, new White House cyber director says

The U.S. “must send a message this behavior is unacceptable” and will come at a cost, Sean Cairncross said.
Bill Schenkelberg September 8, 2025 at 8:54am

https://www.forbes.com/councils/forbestechcouncil/2025/09/08/cyber-...

Cyber Resilience: The Underappreciated Side Of Deterrence

Exercising due diligence in building cyber resilience can mean that a company is less likely to be selected for attack compared to softer and less pr…
Bill Schenkelberg September 7, 2025 at 2:51pm

https://www.bbc.com/news/articles/c5y4jpg922qo

AI firm Anthropic agrees to pay authors $1.5bn for pirating work

Anthropic's deal with authors would constitute the largest public copyright recovery in history, lawyers say.
Bill Schenkelberg September 5, 2025 at 8:08am

https://www.yahoo.com/news/articles/jaguar-land-rover-staff-told-09...

Jaguar Land Rover staff told to stay home until Tuesday after cyber attack

Jaguar Land Rover has told factory staff to stay at home until at least Tuesday as the company continues to be plagued by a cyber attack.
Jim McKee August 29, 2025 at 1:55pm

https://flashpoint.io/blog/leveraging-discord-for-osint/?CRO3=%2330...

A New Threat Frontier: Leveraging Discord for OSINT

We unpack insights from our latest webinar detailing the rising significance of Discord for intelligence professionals.
Bill Schenkelberg August 27, 2025 at 2:44pm

https://www.yahoo.com/news/articles/state-nevada-still-digging-unde...

State of Nevada still digging out from under cyber attack

If Nevada state officials know what — or who — crashed the state government’s information technology systems and brought multiple state offices and s…

of 118

This reply was deleted.

Red Sky Alliance

For more information about Red Sky Alliance, follow the link, ABOUT

#xg { position:relative;top:120px; } #xn_bar { top:120px; }

Hello, you need to enable JavaScript to use Red Sky Alliance.

Please check your browser settings or contact your system administrator.

Home

TRENDING

DDoS Attacks Increasing

Philippine MIL Company Spied upon with Chinese EggStremeAgent

‘GhostAction’ Supply Chain Attack Hits Secrets in GitHub

AI & Ransomware Together

Salesloft Drift Breach

Hackers Exploit Grok

Cyber Breaches Hurt Your Wallet

Agentic AI Manipulation

Note: this page contains paid content.

REDXRAY

In the News

2023 REDSHORTS

REDSHORT Webinars

Cyber Security Blog

Comments

Red Sky Alliance