Home

Red Sky® Alliance has been serving information security professionals for over twelve years. We invite businesses and organizations, from enterprises to small businesses, to learn more about cyber threats and how to avoid them. We provide TLP White and Green cyber threat reporting for targeted industry segments, international reports, and malware/bot analyses.

ANNOUNCEMENT - WAPACKLABS.COM IS NOW REDSKYALLIANCE.COM
A privately held USA-owned cyber threat intelligence firm that delivers proprietary cyber threat intelligence datasets and services. Our company delivers insightful, actionable intelligence in formats best suited to your strategic, operational, and tactical needs.

Let us better prepare you and your team for new cyber threats.

Redskyalliance.org offers free access to all, and no salesperson will call.

MOVEit and Schools

Posted by Bill Schenkelberg on September 28, 2023 at 12:05pm

The National Student Clearinghouse (NSC) reported that nearly 900 colleges and universities across the US had data stolen during attacks by a Russia-based ransomware gang exploiting the popular MOVEit file-sharing tool. The nonprofit manages educational reporting, data exchange, verification, and research services for 3,600 colleges and universities as well as 22,000 high…

Retch & S.H.O. Ransomware

Posted by CyberDog on September 27, 2023 at 11:25am

Retch is a new ransomware variant first discovered in mid-August 2023. It encrypts files on compromised machines and leaves two ransom notes asking victims to pay a ransom for file decryption.

Infection Vector - Information about the infection vector used by the Retch ransomware threat actor is not currently available. However, it is unlikely to be significantly different from…

Cyber Attack Reporting ½

Posted by Bill Schenkelberg on September 27, 2023 at 8:00am

Fear, ignorance and forgetfulness are some of the reasons for widespread shortcomings in reporting cyber-attacks and breaches, both internally and externally, according to a new global survey conducted by Keeper Security.

The study, Cybersecurity Disasters Survey Incident Reporting & Disclosure, was published on September 26, 2023. It found that, despite cyber-attacks being…

MO Cyber Attack Lessons Learned

Posted by Bill Schenkelberg on September 26, 2023 at 12:30pm

It was 8:30 a.m. last Friday before a long weekend when Missouri's state court system learned it might have a cyber problem. IT staff discovered the state court system's cybersecurity software had detected unusual activity coming from a system administrator's account at 2 am, well outside business hours. Also suspicious? That system admin was on vacation, said the director of IT…

Maritime AI is Good, or is It?

Posted by Bill Schenkelberg on September 25, 2023 at 8:05am

Emerging technology in the maritime arena is being used for tracking emissions, avoiding collisions and route planning, but lawyers are circling the technology, a recent seminar reported. The rapid expansion of artificial intelligence (AI) faces major stumbling blocks in shipping, where more than 80% of large vessels barely have enough communications capacity to send an email, a…

Snatch Ransomware

Posted by Bill Schenkelberg on September 23, 2023 at 9:05am

The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) have released a this joint CSA to disseminate known ransomware IOCs and TTPs associated with the Snatch ransomware variant.

Since mid-2021, Snatch threat actors have consistently evolved their tactics to take advantage of current trends in the cybercriminal space and…

Single Cyber Incident Reporting Portal

Posted by Bill Schenkelberg on September 22, 2023 at 8:25am

After years of spouting the need in an ease of reporting suspicious activity, I see the US Department of Homeland Security (DHS) now floating several new ideas for how to make federal cyber incident reporting rules ‘simpler’ for victim organizations — including the concept of a single reporting web portal. Not a new concept, but a wise one.

There are currently 52 in-effect or…

PIILOPUOTI goes Dark

Posted by Bill Schenkelberg on September 21, 2023 at 2:10pm

Law enforcement officials in Finland worked with Europol and a cybersecurity firm to take down a dark web marketplace called PIILOPUOTI. The platform had operated on the Tor Network since May 2022 as a way for people to smuggle and sell drugs as well as paraphernalia into Finland, according to a statement from Finnish Customs. “The criminal investigation is still underway. At this…

OVER A MILLION DARK WEB INDICATORS & COUNTING

We have scraped over 75 TOR Websites.

REDPANE is NOW AVAILABLE with CTAC.

Get in touch to find out more.

GET STARTED

In the News

2023 REDSHORTS

REDSHORT Webinars

Please Join our REDSHORT webinars. 'RED' as something important from Red Sky Alliance, and 'SHORT' in 10 minutes or less twice a month. We will cover highlights of trending topics.

REGISTER HERE

Cyber Security Blog

You need to be a member of Red Sky Alliance to add comments!

Comments are closed.

Comments

Bill Schenkelberg September 27, 2023 at 8:55am

https://therecord.media/philippines-state-health-insurer-struggles-...

Philippines state health org struggling to recover from ransomware attack

The government organization that manages the universal healthcare system of the Philippines has struggled to recover from a ransomware incident that…
Bill Schenkelberg September 25, 2023 at 11:21am

https://www.msn.com/en-us/money/other/reported-cyber-security-breac...
Bill Schenkelberg September 22, 2023 at 2:40pm

https://therecord.media/ftc-samuel-levine-data-brokers-speech?utm_m...

FTC official attacks data brokers at industry conference

Samuel Levine, director of the FTC's Bureau of Consumer Protection, said the power of data brokers “should concern all of us,” given how much informa…
Bill Schenkelberg September 21, 2023 at 10:43am

https://safety4sea.com/hapag-lloyd-to-use-starlinks-satellite-inter...

Hapag-Lloyd to use Starlink's satellite internet onboard - SAFETY4SEA

Hapag-Lloyd is set to transform connectivity at sea with the rollout of Starlink satellite internet technology across its fleet.
Bill Schenkelberg September 20, 2023 at 8:02am

https://www.npr.org/2023/09/15/1199681234/cyberattacks-strike-casin...

Cyberattacks strike casino giants Caesars and MGM

The disclosure by Caesars came after MGM Resorts International reported publicly that a cyberattack it detected led it to shut down computer systems…
Bill Schenkelberg September 19, 2023 at 2:38pm

https://redskyalliance.org/transportation/maritime-threat-assessmen...

Maritime Threat Assessment 09 18 2023

Two cargo ships arrived at a Ukrainian port on Saturday, the first to do so since Russia withdrew from a grain deal brokered by the United Nations (U…
Bill Schenkelberg September 18, 2023 at 11:01am

https://www.bleepingcomputer.com/news/security/new-sprysocks-linux-...

New SprySOCKS Linux malware used in cyber espionage attacks

A Chinese espionage-focused hacker tracked as 'Earth Lusca' was observed targeting government agencies in multiple countries, using a new Linux backd…
Bill Schenkelberg September 15, 2023 at 8:18am

https://www.euractiv.com/section/cybersecurity/news/germany-still-l...

Germany still lags in cybersecurity ‐ report reveals

Germany is not sufficiently prepared for the risi
Bill Schenkelberg September 14, 2023 at 11:36am

https://www.usatoday.com/story/tech/news/2023/09/11/mgm-cyber-attac...

MGM Resorts properties in US shut down computer systems after cyber attack

A ransomware attack left all of MGM's Hotels & Casinos in a vulnerable position with guests unable to access ATMs, digital keys and other amenities.
Bill Schenkelberg September 6, 2023 at 3:42pm

https://therecord.media/germany-bafin-regulator-ddos-incident?utm_m...

German financial regulator website hit by DDoS attack

Administrators at BaFin, which oversees and regulates German financial institutions and markets, responded to an incident over the weekend.

of 63

This reply was deleted.

Red Sky Alliance

For more information about Red Sky Alliance, follow the link, ABOUT

#xg { position:relative;top:120px; } #xn_bar { top:120px; }

Hello, you need to enable JavaScript to use Red Sky Alliance.

Please check your browser settings or contact your system administrator.

Home

TRENDING

MOVEit and Schools

Retch & S.H.O. Ransomware

Cyber Attack Reporting ½

MO Cyber Attack Lessons Learned

Maritime AI is Good, or is It?

Snatch Ransomware

Single Cyber Incident Reporting Portal

PIILOPUOTI goes Dark

Note: this page contains paid content.

In the News

2023 REDSHORTS

REDSHORT Webinars

Cyber Security Blog

Comments

Red Sky Alliance