Home

Red Sky® Alliance has been serving information security professionals for over twelve years. We invite businesses and organizations, from enterprises to small businesses, to learn more about cyber threats and how to avoid them. We provide TLP White and Green cyber threat reporting for targeted industry segments, international reports, and malware/bot analyses.

A privately held USA-owned cyber threat intelligence firm that delivers proprietary cyber threat intelligence datasets and services. Our company provides insightful, actionable intelligence in formats best suited to your strategic, operational, and tactical needs.

 

Let us better prepare you and your team for new cyber threats.

Redskyalliance.org offers free access to all, and no salesperson will call.

TRENDING

P2Pinfect

Posted by Bill Schenkelberg on May 26, 2026 at 12:00pm

31166451096?profile=RESIZE_400x FortiGuard Labs recently identified persistent P2Pinfect presences within Google Kubernetes Engine (GKE) clusters at several client companies, with one compromise spanning six months.  The compromises originated from exposed Redis instances, which allowed the botnet to gain an initial foothold.  The botnet's beaconing was repeatedly flagged in FortiCNAPP's Composite Alerts,…

Read more…

More Phishing Tips

Posted by Jim McKee on May 26, 2026 at 8:00am

31169618668?profile=RESIZE_400x New research from Barracuda Networks has identified a surge in attacks by Saiga 2FA, a small-scale but sophisticated phishing kit.  Activity increased significantly in February 2026, following earlier sightings targeting legal organizations in Australia in 2025.  The kit operates as a boutique service rather than a high-volume automated platform, focusing on highly targeted campaigns…

Read more…

CISA GitHub Leak

Posted by Bill Schenkelberg on May 25, 2026 at 8:10am

31153700286?profile=RESIZE_400x Until this past weekend, a contractor for the Cybersecurity & Infrastructure Security Agency (CISA) maintained a public GitHub repository that exposed credentials to several highly privileged AWS GovCloud accounts and many internal CISA systems.  Security experts said the public archive included files detailing how CISA builds, tests and deploys software internally, and that it…

Read more…

May 2026: Patch Tuesday

Posted by Jim McKee on May 22, 2026 at 12:00pm

31153225467?profile=RESIZE_400x Artificial intelligence platforms may be just as susceptible to social engineering as human beings, but they are proving remarkably good at finding security vulnerabilities in human-made computer code.  That reality is on full display this month, with some of the more widely used software makers, including Apple, Google, Microsoft, Mozilla, and Oracle, fixing near-record volumes of…

Read more…

Fake Word Phishing

Posted by Bill Schenkelberg on May 22, 2026 at 8:00am

31153692894?profile=RESIZE_400x These attacks are abusing trusted remote access tools to bypass detection, exposing a growing security gap for enterprises.  A fake Word Online phishing page has exposed a growing enterprise blind spot: attackers using trusted tools to gain remote access without raising immediate alarms.  

The attack chain observed by ANY.RUN moved from an Outlook email to an MSI installer,…

Read more…

Monster Wolves in Japan

Posted by Bill Schenkelberg on May 21, 2026 at 11:50am

31153261872?profile=RESIZE_400x With record reports of bear attacks on humans, Japan has been increasingly turning to high-tech solutions, as you might expect.  However, reports suggest that Ohta Seiki, a firm making the animatronic robot Monster Wolf to repel bears from human-habituated areas, can’t keep up with demand.  “We cannot make them fast enough,” company president Yuji Ohta …

Read more…

Threat Actors Weaponize AI to Develop Zero-Day Exploits

Posted by CyberDog on May 21, 2026 at 8:00am

31153252892?profile=RESIZE_400x A new report from Google Threat Intelligence Group (GTIG) reveals a coordinated campaign exploiting an AI-generated zero-day vulnerability.  The attack targets an unnamed open-source web administration tool, using the flaw to bypass two-factor authentication (2FA).  The…

Read more…

I Forgot the Processors

Posted by Jim McKee on May 20, 2026 at 12:30pm

31153224064?profile=RESIZE_400x Europe is pouring more than €2 billion into sovereign cloud initiatives designed to reduce exposure to US legal reach.  The EU's IPCEI-CIS program funds infrastructure development.  France qualifies operators under SecNumCloud, a framework with nearly 1,200 technical requirements promising "immunity from extraterritorial laws."

But most datacenters and qualified cloud operators…

Read more…

REDXRAY

CLICK HERE FOR MORE INFORMATION

In the News

2023 REDSHORTS

REDSHORT Webinars

Please Join our REDSHORT webinars. 'RED' as something important from Red Sky Alliance, and 'SHORT' in 10 minutes or less weekly. We will cover highlights of trending topics.

REGISTER HERE

Cyber Security Blog

You need to be a member of Red Sky Alliance to add comments!

Comments are closed.

Comments

This reply was deleted.

Red Sky Alliance

For more information about Red Sky Alliance, follow the link, ABOUT