Home

Red Sky® Alliance has been serving information security professionals for over twelve years. We invite businesses and organizations, from enterprises to small businesses, to learn more about cyber threats and how to avoid them. We provide TLP White and Green cyber threat reporting for targeted industry segments, international reports, and malware/bot analyses.

A privately held USA-owned cyber threat intelligence firm that delivers proprietary cyber threat intelligence datasets and services. Our company provides insightful, actionable intelligence in formats best suited to your strategic, operational, and tactical needs.

Let us better prepare you and your team for new cyber threats.

Redskyalliance.org offers free access to all, and no salesperson will call.

AI is Helping Payment Fraud

Posted by Jim McKee on December 8, 2025 at 12:00pm

After years of quiet escalation, business leaders are finally beginning to grasp just how serious the threat of fraud has become. Today, nearly half of all fraud attempts (41%) now involve artificial intelligence. Nowhere is this more evident than in the payments industry. Fraudsters can use AI to generate convincing fake invoices, purchase orders, and payment instructions that…

Albiriox Android Malware

Posted by Bill Schenkelberg on December 8, 2025 at 7:55am

Imagine if a hacker could gain full control of your smartphone and stream everything on its screen to their own device? Well, a new Android banking trojan allows them to do just that, but they can also tap, swipe, type and navigate through hijacked smartphones in real time. According to a new blog post from the cybersecurity site Malwarebytes, security researchers at the online fraud…

Very Shady

Posted by Bill Schenkelberg on December 7, 2025 at 7:10am

A long-running malware operation that has evolved over several years has been turning browser extensions in Chrome and Edge into spyware through updates that added malicious functionalities. According to a report from Koi Security, the ShadyPanda campaign affects 4.3 million users who downloaded these now compromised browser extensions.

The ShadyPanda campaign consists of 20…

700Credit Reports Cyberattacks

Posted by Bill Schenkelberg on December 6, 2025 at 9:30am

Cybercriminals have targeted 700Credit, the largest provider of credit, identity, and compliance services for dealerships, breaching sensitive data of approximately 5.6 million customers and nearly 18,000 dealerships in North America. This incident occurred in late October and involved names, addresses, Social Security numbers, and employment information.

The breach, confirmed…

Vessel Impersonation and Supply Chain Report / November 2025

Posted by JD Thomason on December 5, 2025 at 5:11pm

Red Sky Alliance monthly queries our backend databases, identifying all new data containing Motor Vessel (MV) and Motor Tanker (MT) in the subject line of malicious emails. Malicious actors use emails with Motor Vessel (MV) or Motor Tanker (MT) in the subject line as a lure to entice users in the maritime industry to open emails containing malicious…

Wind Farming for Profit

Posted by Jim McKee on December 5, 2025 at 12:00pm

A former technical manager employed by the wind farm operator Nordex has been sentenced to 120 hours of community service by a Dutch court. The sentence follows the discovery that the employee had used company infrastructure to power a clandestine cryptocurrency mining operation across two renewable energy sites. The rogue employee, a man in his forties, exploited his privileged…

'JackFix' Attack Circumvents ClickFix Mitigations

Posted by Bill Schenkelberg on December 5, 2025 at 8:10am

A new spin on the ClickFix attack is making the rounds, and it is designed to circumvent some of the strategies organizations have for mitigating them. ClickFix and its slightly more elegant offshoot, FileFix, are notorious for being almost inexplicably manipulative. Attackers persuade victims to run commands on their computers that they never otherwise would and may never have…

Better Call “Rey”

Posted by Bill Schenkelberg on December 4, 2025 at 12:05pm

A prolific cybercriminal group that calls itself “Scattered LAPSUS$ Hunters” has dominated headlines this year by regularly stealing data from and publicly mass extorting dozens of major corporations. But the tables seem to have turned somewhat for “Rey,” the moniker chosen by the technical operator and public face of the hacker group: Last week, Rey confirmed his real life identity…

REDXRAY

CLICK HERE FOR MORE INFORMATION

In the News

2023 REDSHORTS

REDSHORT Webinars

Please Join our REDSHORT webinars. 'RED' as something important from Red Sky Alliance, and 'SHORT' in 10 minutes or less weekly. We will cover highlights of trending topics.

REGISTER HERE

Cyber Security Blog

You need to be a member of Red Sky Alliance to add comments!

Comments are closed.

Comments

Bill Schenkelberg December 8, 2025 at 8:07am

https://www.moneycontrol.com/technology/apple-and-google-sound-glob...

Apple and Google sound global alarm as state-linked cyber attacks target users in 150 countries

Apple and Google have warned users in over 150 countries about state-backed cyber attacks, highlighting renewed spyware activity and rising global su…
Bill Schenkelberg December 7, 2025 at 2:37pm

https://allafrica.com/stories/202512050588.html

Nigeria: Report - Nigeria's Cyber Attack Breaches Surge 1,047 Percent in Q3

Nigeria encountered an escalated cyber threats in Q3 2025, as data breaches affecting Nigerian entities rose by an extraordinary 1,047 per cent compa…
Bill Schenkelberg December 5, 2025 at 7:58am

https://www.computerweekly.com/news/366635852/NCC-supporting-London...

NCC supporting London councils gripped by cyber attacks | Computer Weekly

Three west London councils hit by a cyber attack continue to investigate as services remain disrupted nearly two weeks on.
Bill Schenkelberg December 4, 2025 at 8:09am

https://www.hstoday.us/subject-matter-areas/cybersecurity/amazon-so...

Amazon Sounds Alarm as Nation-State Groups Blend Cyber Intrusion With Kinetic Targeting - HSToday

Recent investigations by Amazon’s threat intelligence teams have uncovered a trend they describe as cyber-enabled kinetic targeting, in which nation-…
Bill Schenkelberg December 3, 2025 at 8:11am

https://trak.in/stories/govt-confirms-cyber-attacks-across-7-major-...

Govt Confirms Cyber Attacks Across 7 Major Airports India, No Flights Disrupted - Trak.in - Indian…

,India’s aviation ecosystem is once again under the cybersecurity spotlight after the central government officially confirmed that seven major airpor…
Bill Schenkelberg December 2, 2025 at 8:21am

https://www.forbes.com/sites/davidmorel/2025/12/02/why-your-people-...

Why Your People Are Your Best Defense Against Cyber-Risks

Only 2% of businesses globally say they are fully resilient to cyber-attacks, according to PwC. It’s frequently human error that leads to such breach…
Bill Schenkelberg December 1, 2025 at 7:20am

https://www.computerworld.com/article/4098356/why-security-needs-a-...

Why security needs a step change to thwart cyber attacks amid surging innovation – Computerworld
Bill Schenkelberg November 28, 2025 at 2:30pm

https://www.infosecurity-magazine.com/news/asahi-15-million-customers/

Asahi Confirms 1.5 Million Customers Affected in Major Cyber-Attack

Almost two million people may have seen their personal data exposed following a large-scale cyberattack that hit Asahi in September 2025
Bill Schenkelberg November 25, 2025 at 7:57am

https://www.firstalert4.com/2025/11/22/cyberattack-disables-code-re...

Cyberattack disables Code Red emergency alert system across St. Louis region

A cyberattack has caused a nationwide outage of the Code Red emergency notification system, leaving cities and counties across the St. Louis region u…
Bill Schenkelberg November 24, 2025 at 8:03am

https://www.techjuice.pk/govt-military-institutions-on-high-alert-a...

Govt, Military Institutions on High Alert After Critical Oracle Security Flaw Exposes Systems to Cy…

A critical Oracle EBS flaw leaves government and military systems exposed to full takeover attacks, prompting National CERT to issue an urgent securi…

of 123

This reply was deleted.

Red Sky Alliance

For more information about Red Sky Alliance, follow the link, ABOUT

#xg { position:relative;top:120px; } #xn_bar { top:120px; }

Hello, you need to enable JavaScript to use Red Sky Alliance.

Please check your browser settings or contact your system administrator.

Home

TRENDING

AI is Helping Payment Fraud

Albiriox Android Malware

Very Shady

700Credit Reports Cyberattacks

Vessel Impersonation and Supply Chain Report / November 2025

Wind Farming for Profit

'JackFix' Attack Circumvents ClickFix Mitigations

Better Call “Rey”

Note: this page contains paid content.

REDXRAY

In the News

2023 REDSHORTS

REDSHORT Webinars

Cyber Security Blog

Comments

Red Sky Alliance