Home

Red Sky® Alliance

Wapack Labs has been serving information security professionals for over eight years. We invite businesses and organizations, enterprise to small businesses to learn more about cyber threats and how to avoid them. We provide reports, indicators, references and training about targeted, advanced, and emerging cyber threats in our private portal.

Red Sky® Alliance offers TLP White and Green cyber threat reporting for targeted industry segments, international reports and malware/bot analyses.

Let us better prepare you and your team for new cyber threats.

Signing up for access to all content is simple, just enter your name and email address. Redskyalliance.org is free to members and no salesperson will call.

Trending

Hacking COVID-19 Vaccine Documents or Foul Play During the Pandemi

Posted by Mac McKee on January 15, 2021 at 5:54pm

8427732881?profile=RESIZE_400x Hackers recently posted confidential documents regarding Covid-19 medicines and vaccines on the internet after a data breach late last year at the European Medicines Agency (EMA).   Timelines related to evaluating and approving Covid medicines and vaccines haven’t been affected, the EMA said in a statement on Tuesday. The agency said it remains fully functional and that law enforcement…

Read more…

TACTICAL CYBER REPORT: Manufacturing

Posted by Bill Schenkelberg on January 15, 2021 at 8:02am

8426125299?profile=RESIZE_400x Activity Summary - Week Ending 15 January 2021:

  • 46 unique email accounts were seen compromised with Keyloggers
  • Red Sky Alliance identified 43,555 connections from new unique IP addresses
  • Analysts identified 2,201 new IP addresses participating in various Botnets
  • German - Strang 1&1 Ionos SE in the Top 10 C2 compromised Servers
  • Solar…
Read more…

Clop Ransomware Welcomes 2021

Posted by Mac McKee on January 14, 2021 at 1:58pm

8423424691?profile=RESIZE_400x In their attempt to extort as much money as quickly as possible out of victims, ransomware gangs know some effective techniques to get the full attention of a firm’s management team.  One of them is to specifically target the sensitive information stored on the computers used by a company’s top executives, in the hope of finding valuable data that can best pressure bosses into approving…

Read more…

Siemens JT2Go and Teamcenter Visualization

Posted by Bill Schenkelberg on January 13, 2021 at 4:32pm

8420081664?profile=RESIZE_400x MS-ISAC Summary (TLP White):  Multiple vulnerabilities have been discovered in Siemens’ JT2Go and Teamcenter Visualization products, the most severe of which could allow for arbitrary code execution in the context of the system process.  JT2Go and Teamcenter Visualization are used for viewing 3D models.  Depending on the privileges associated with the…

Read more…

China, Cyber and the South China Sea

Posted by Bill Schenkelberg on January 8, 2021 at 2:00pm

8403132900?profile=RESIZE_400x For years, Red Sky Alliance has been monitoring the Chinese Communist Party (CCP) in both cyber activity and geopolitical matters.  The CCP has been and continues to be aggressive in their Belt and Road, long term, initiatives, or the China Maritime Silk Road.[1]  The CCP yearly train approximately 20,000 cyber ‘professionals’ in hacking type activities.  This…

Read more…

TACTICAL CYBER REPORT: BUSINESS SERVICES

Posted by Bill Schenkelberg on January 8, 2021 at 1:29pm

8403075076?profile=RESIZE_400x Activity Summary - Week Ending 8 January 2021:

  • Red Sky Alliance observed 123 unique email accounts compromised with Keyloggers
  • roger1983@gmail.com ??
  • Analysts identified 46,954 connections from new unique IP addresses
  • Red Sky Alliance identified 2,131 new IP addresses participating in various Botnets
  • WhatsApp – New…
Read more…

Trickbot Wishes Happy New Year’s to All

Posted by Jim McKee on January 7, 2021 at 8:35am

8399725677?profile=RESIZE_400x Last October 2020, researchers at US security company AdvIntel discovered that one of the Internet’s most troublesome malware platforms, Trickbot, had started testing something rather threatening: probing UEFI firmware chips inside targeted PCs to see whether they were vulnerable to known firmware vulnerabilities.  This was only reconnaissance, Trickbot was not infecting the SPI flash…

Read more…

2021 Cyber Security Predictions

Posted by Bill Schenkelberg on January 5, 2021 at 3:18pm

8390510860?profile=RESIZE_400x Our Red Sky Alliance research predictions for 2021 are not necessarily in any order of importance yet presented as what we believe are the most important.

Ransomware…Ransomware… Ransomware

2020 saw a dramatic rise in ransomware activity.  While it is difficult to predict specifically what ransomware authors will do next, it can be expected that they will…

Read more…

REDXRAY® TWO WEEK FREE TRIAL! SIGN UP TODAY

REDXRAY® DISCOVERY -- Daily Notification report of threats against your network. Two Week FREE TRIAL. Sign Up Today, We will get you started!

Schedule Your Demo Now 888-RedXray (888-733-9729)

Botnet Detection With Red Sky Alliance & IPinfo

Identify possible malware installations using either our botnet tracker collection or our sinkhole traffic collection. In many cases, it can also identify the malware protocol resulting in high confidence hits. This threat intelligence includes source IP addresses, destination IP addresses, domains, or URLs. DEMO SIGNUP

Webinars

Please Join our REDSHORT webinar. 'RED' as in something important from Red Sky Alliance and 'SHORT' as in 10 minutes or less twice a month. We will cover highlights of 1-2 trending topics, Trending Cyber Indicators, and include a link to a detailed report we will share. Our Encore presentations, also twice a month, same place & time, we will present previous webinars. Questions on any of these webinars can be answered in our redskyalliance.org Cyber Security Blog.

REGISTER HERE

In the News

Red Sky Alliance

For more information about Red Sky Alliance, follow the link, ABOUT

Cyber Security Blog

You need to be a member of Red Sky Alliance to add comments!

Join Red Sky Alliance

Comments

  • Jim McKee January 12, 2021 at 10:12pm
    There were two segments, they did not let me off the hot seat for an hour. Here is the second one: https://youtu.be/pG9NYaDWHno
  • Jim McKee January 12, 2021 at 10:10pm
    Security & Compliance Weekly had me on their panel this morning. If you missed it you can view it on https://youtu.be/ae65-tAjM90
  • Bill Schenkelberg January 6, 2021 at 8:45am
    Check out the new (01 04 2021) Indicator Black List in the Indicators Channel.
  • Jonathon Sweeney January 5, 2021 at 12:38pm
    T-Mobile has experienced their fourth major breach in three years...

    "Fool me once, shame on you..."
  • Jim McKee December 30, 2020 at 10:12pm
    2020 has been a challenging year for all of us is coming to an end. All of us at Red Sky Alliance want to wish our members, clients and friends the best of luck for the new year. Happy New Year.
  • Jim McKee December 22, 2020 at 5:24pm
    The holiday season is here and most of us will be at home and sitting in our home offices. All of us at Red Sky Alliance wish our members Merry Christmas, Happy Holidays and best wishes for the new year.
  • Jonathon Sweeney December 15, 2020 at 9:15am
    Want to learn more about the current SolarWinds attacks? Check us out on tomorrow's Threat Brief to learn more...
  • Jim McKee December 14, 2020 at 12:54pm
    We have members on our portal from many countries. I welcome the submission of articles of interest to their industry segments and countries. I will be happy to review them for posting.
  • Bill Schenkelberg December 14, 2020 at 12:41pm
    12 07 2020 Keylogger, Sinkhole and Botnet Tracker Black Lists - in Indicators Channel.
  • Bill Schenkelberg December 7, 2020 at 4:07pm
    December 2020 issue of Phish & Ships in the Transportation Section. Check it out.
This reply was deleted.
E-mail me when people leave their comments –
Follow