Home

Red Sky® Alliance

Wapack Labs has been serving information security professionals for over eight years. We invite businesses and organizations, enterprise to small businesses to learn more about cyber threats and how to avoid them. We provide reports, indicators, references and training about targeted, advanced, and emerging cyber threats in our private portal.

Red Sky® Alliance offers TLP White and Green cyber threat reporting for targeted industry segments, international reports and malware/bot analyses.

Let us better prepare you and your team for new cyber threats.

Signing up for access to all content is simple, just enter your name and email address. Redskyalliance.org is free to members and no salesperson will call.

Trending

How China Secretly Recruits US Citizens with Security Clearances

Posted by Jim McKee on October 21, 2020 at 12:48pm

8060004884?profile=RESIZE_400x In June 2015, the US Office of Personnel Management (OPM) announced that it had been the target of a data breach targeting the records of as many as four million people.  The final estimate of the number of people impacted is 22.1 million.  This includes records of people who had undergone background checks, as well as their friends and family, many of whom were not government…

Read more…

Possible Identity of a Kuwaiti Hacker NYANxCAT

Posted by Yury Polozov on October 19, 2020 at 12:38pm

 

8051471253?profile=RESIZE_400x NYANxCAT is a prolific hacker who programs new pieces and versions of malware, shares it widely, and records blackhat hacker educational YouTube videos which has over 150,000 views.  He uses GitHub repository, sells his hacker tools and services using PayPal and Bitcoin.  In this report, we discuss some of the samples of NYANXCat malware, his business models, and possible…

Read more…

SMB’s Need to Prepare for Today and Tomorrow’s Cyber Threats

Posted by Jim McKee on October 16, 2020 at 2:49pm

8042433884?profile=RESIZE_400x SMB’s Need to Prepare for Today and Tomorrow’s Cyber Threats

The cybersecurity landscape presents new challenges at businesses - every day.  Please be aware of these 10 threats to help your business avoid a major attack or breach.  When it comes to securing your network, software, and data from potential attackers, Small to Midsize Businesses (SMBs) have numerous…

Read more…

Tactical Cyber Report: Commercial Facilities/Retail

Posted by Bill Schenkelberg on October 16, 2020 at 9:48am

8041670677?profile=RESIZE_400x Activity Summary - Week Ending 16 October 2020:

  • Red Sky Alliance identified 52,441 connections from new unique IP addresses
  • Analysts observed 159 unique email accounts compromised with Keyloggers
  • 2,640 new IP addresses were observed participating in various Botnets
  • SlothfulMedia
  • New Dridex Malware Campaign
  • Mobile Money being…
Read more…

Trickbot May Not be so Tricky After-All

Posted by Bill Schenkelberg on October 16, 2020 at 9:25am

8041648453?profile=RESIZE_400x Microsoft collaborated with cybersecurity companies and government agencies to take down the million-device Trickbot botnet to help protect the November 3rd US Presidential election and stop the global spread of ransomware and other malware. The botnet has been used to distribute a variety of malicious code, including the Ryuk ransomware variant, which the US government has…

Read more…

Do you change TV channels via Voice Commands?

Posted by Bill Schenkelberg on October 15, 2020 at 4:01pm

8039528689?profile=RESIZE_400x Researchers recently discovered the ‘WarezTheRemote’ attack, which affects Comcast’s XR11 voice remote control.  This security flaw allows cyber attackers to remotely snoop in on victims’ private conversations was is found to stem from an unexpected device, their TV remotes.  Huh?

The flaw stems from Comcast’s XR11, a popular voice-activated remote control for cable TV, which has…

Read more…

Cybercrime Group FIN11 Has a New Method: Ransomware

Posted by Mac McKee on October 15, 2020 at 9:48am

8038692495?profile=RESIZE_400x A newly identified group of financially motivated hackers, likely based in a Russian-speaking country, has been running high-volume phishing, ransomware, and extortion campaigns in the United States, Germany, and many other countries for the last four years, using the Clop ransomware and various backdoors in their operations.

Researchers at Mandiant have been tracking the group…

Read more…

MalLocker.B Ransomware Targeting Android Smartphone Users

Posted by Jim McKee on October 14, 2020 at 4:48pm

8035933500?profile=RESIZE_400x A new ransomware has emerged online threatening Android security.  This new malware triggers on an infected phone as soon as the victim presses the Home key. Researchers at Microsoft are warning about a new strain of mobile ransomware that takes advantage of incoming call notifications and Android's Home button to lock the device behind a ransom note.

The findings concern a…

Read more…

REDXRAY® TWO WEEK FREE TRIAL! SIGN UP TODAY

REDXRAY® DISCOVERY -- Daily Notification report of threats against your network. Two Week FREE TRIAL. Sign Up Today, We will get you started!

Schedule Your Demo Now 888-RedXray (888-733-9729)

Webinars

REDSHORT Reporting Webinar is LIVE every Wednesday, at 9:30AM'RED' as in something important from Red Sky Alliance and 'SHORT' as in, once a week in 10 minutes or less. The webinar will be a summary of a topic and will include a link to an in-depth report. 

REGISTER HERE

In the News

Red Sky Alliance

For more information about Red Sky Alliance, follow the link, ABOUT

RedXray® Compose

Have a writing assignment? Writer's block? Looking for some ideas? Have an idea but need to flush it out some? Have you tried our RedXray® Compose tool? CLICK HERE. Give it a try, you won't be disappointed.

Cyber Security Blog

You need to be a member of Red Sky Alliance to add comments!

Join Red Sky Alliance

Comments

  • Bill Schenkelberg October 19, 2020 at 1:06pm
    This week's Black Lists are in the Indicators Channel.
  • Jim McKee October 12, 2020 at 6:13pm
    Members, we are always looking for quality content for our portal. No rants or political opinions, but if you have followed an identified threat, malware or INFOSEC topic, we would be happy to consider it for posting. Thanks, JIM
  • Bill Schenkelberg October 9, 2020 at 12:08pm
    OCT 2020 Phish and Ships edition in the Transportation section.
  • Bill Schenkelberg October 8, 2020 at 3:26pm
    Check out our next Red Shorts on 14 OCT @ 0930 EST - topic will be the PalmerWorm/BlackTech hacker group.
  • Bill Schenkelberg September 14, 2020 at 11:29am
    Hiring Ship Security & Armed Guards - What You need to Know, from our friends at Dryad Global (see Transportation room). Red Sky Alliance works close with Dryad to show the importance of both maritime physical and cyber security. Piracy and kidnapping remains a transportation challenge.
  • Jim McKee September 11, 2020 at 5:12pm
    You have humans on your network. They are all over your network doing all sorts of things with company data. Most of them are doing exactly what they are supposed to be doing. Nothing new to report there but do you know who they all are? Should they have that level of access? Why is someone in accounting downloading 1 TB of data? Did that new salesperson just send the competitors a price list? When is the last time you REALLY did some security awareness training besides that one video you sent 6 months ago?

    Now people are working from home. Who is using this corporate device? Where did this Chromebook come from on the network? We have people working at home from China?

    We have a lot of questions and a lot of work ahead of us as it relates to the human element and Information Security. Some say there is are technical controls we need to put in place. Some say it is merely adopting a company culture shift toward security. The truth is probably somewhere in the middle. Discover Recover RedXray
  • Yury Polozov September 10, 2020 at 12:29pm
    New sanction against Russian cyber actors lists virtual currency wallets that they were using! "Cyber-related Designations; ​​​​Foreign Interference in U.S. Election Designations" https://home.treasury.gov/policy-issues/financial-sanctions/recent-...
    Cyber-related Designations; ​​​​Foreign Interference in U.S. Election Designations | U.S. Departmen…
  • Bill Schenkelberg September 2, 2020 at 2:43pm
    Slack has patched a critical remote code execution vulnerability that could enable an attacker to execute arbitrary code in the desktop version of its collaboration software, researchers report. The remote code execution flaw could allow a successful attacker to fully control the Slack desktop app on a target machine. https://www.darkreading.com/vulnerabilities---threats/slack-patches...
    Slack Patches Critical Desktop Vulnerability
    The remote code execution flaw could allow a successful attacker to fully control the Slack desktop app on a target machine.
  • Bill Schenkelberg August 28, 2020 at 10:40am
    Our friends from Dryad Global are reporting that a Marshall Islands flagged Oil tanker PIKE IMO: 9396672 was approached by a small craft approximately 12-14m long. There were 6-8 persons onboard as well as a metal ladder. They attempted to board but aborted after avoidance maneuvers were made by the vessel. The vessel and crew are safe and have continued on route." This demonstrates the persistent perils of shipping off the coast of West Africa. https://channel16.dryadglobal.com
    Channel 16
    The latest global news relating to security and risk, specific to commercial maritime and private yacht operations.
  • Bill Schenkelberg August 28, 2020 at 9:20am
    RedXray® DISCOVERY - 2 Week Free trial.....check it out.
This reply was deleted.
E-mail me when people leave their comments –
Follow