Sort by
Activity Summary - Week Ending on 13 February 2026
- Red Sky identified 9,572 connections from ‘new’ and unique, compromised IP addresses
- Techoff SRV LTD in the Netherlands hit 6,950x
- CISA Warning: Reducing the Attack Surface for End-of-Support Edge
Activity Summary - Week Ending on 6 February 2026
- Red Sky identified 8,740 connections from ‘new’ and unique, compromised IP addresses
- Oracle Svenska AB in Singapore hit 525x (2nd week)
- CISA Warning: Fortinet Bypass Vulnerability CVE-2026-24858
- M
Activity Summary - Week Ending on 30 January 2026
- Red Sky identified 8,740 connections from ‘new’ and unique, compromised IP addresses
- Oracle Svenska AB in Singapore hit 299x
- CISA Warning: Five KEV Catalog Up-Dates
- Hijacks in Claude Code
- Under
Activity Summary - Week Ending on 23 January 2026
- Red Sky identified 4,795 connections from ‘new’ and unique, compromised IP addresses
- Microsoft Corp in S. Korea hit 1,258x
- CISA Warning: AI in OT
- AutoLogger-Diagtrack-Listener.etl
- Event Tracing for
Activity Summary - Week Ending on 16 January 2026
- Red Sky identified 12,819 connections from ‘new’ and unique, compromised IP addresses
- M247 LTD Copenhagen, in Denmark hit 224x
- CISA Warning: PowerPoint Code Injection Vulnerability
- CTAC – Dark Web
Activity Summary - Week Ending on 9 January 2026
- Red Sky identified 12,819 connections from ‘new’ and unique, compromised IP addresses
- M247 LTD Copenhagen, in Denmark hit 224x
- CISA Warning: AzeoTech DAQFactory
- Cyber Analyst Burnout
- The Kimwolf Bot
Activity Summary - Week Ending on 2 January 2026
- Red Sky identified 7,058 connections from ‘new’ and unique, compromised IP addresses
- Microsoft in Singapore hit 1,350x
- CISA – Mitsubishi Electric Air Conditioning Systems
- CTAC: Malicious Emails – 30
Activity Summary - Week Ending on 26 December 2025
- Red Sky identified 7,058 connections from ‘new’ and unique, compromised IP addresses
- Microsoft in Singapore hit 1,350x
- CISA – Cisco; Sonic Wall SMA1000; & ASUS
- CTAC: Dark Web Collection – 90 Day
Activity Summary - Week Ending on 19 December 2025
- Red Sky identified 10,237 connections from ‘new’ and unique, compromised IP addresses
- Microsoft in S. Korea hit 665x
- CISA – BOD & Sierra Wireless AirLink ALEOS
- CVE-2025-14174
- React2Shell
- CVE-20
Activity Summary - Week Ending on 12 December 2025
- Red Sky identified 10,237 connections from ‘new’ and unique, compromised IP addresses
- Microsoft in Japan hit 1,170x
- CISA – BrickStorm Malware
- Space Bears
- Quasar Inc.
- Phishing Attack Surge @ 4,1
Activity Summary - Week Ending on 5 December 2025
- Red Sky identified 6,881 connections from ‘new’ and unique, compromised IP addresses
- Microsoft in the US hit 548x
- CISA – Mobile Comms Best Practices
- CVE-2021-26829
- More AI Woes
- "useful-lib": "1.
Activity Summary - Week Ending on 28 November 2025
- Red Sky identified 6,881 connections from ‘new’ and unique, compromised IP addresses
- Microsoft in the US hit 341x
- CTAC - 90 days Keylogger Data
- CISA – Spyware on Messaging
- Lighthouse Phishing-as-a
Activity Summary - Week Ending on 21 November 2025
- Red Sky identified 6,881 connections from ‘new’ and unique, compromised IP addresses
- HostGlobalPlus in the UK hit 801x
- CISA – Akira Ransomware Up-Date
- Citrix zero-days
- CVE-2025-5777
- Cisco Identity
Activity Summary - Week Ending on 14 November 2025
- Red Sky identified 9,810 connections from ‘new’ and unique, compromised IP addresses
- PFCloud in the Netherlands hit 1,716x 2nd Week
- Dell’s Display and Peripherals Manager Vulnerabilities
- CVE-2025-4
Activity Summary - Week Ending on 7 November 2025
- Red Sky identified 6,625 connections from ‘new’ and unique, compromised IP addresses
- PFCloud in the Netherlands hit 1,529x
- CISA Alert – Out-of-Band Security Update
- CVE-2025-59287
- “Confucius Says”
- Wo
Activity Summary - Week Ending on 31 October 2025
- Red Sky identified 12,140 connections from ‘new’ and unique, compromised IP addresses
- Microsoft LTD, US hit 289x 2nd week
- CISA Alert – Delta Electronics ASDA-Soft
- CTAC – 7 Days – Keylogger Data
- AI S
Activity Summary - Week Ending on 24 October 2025
- Red Sky identified 9,681 connections from ‘new’ and unique, compromised IP addresses
- Microsoft LTD, US hit 281x
- CISA Alert – OCT is Cybersecurity Awareness Month
- CTAC – 90 Days – Sinkhole Traffic
- D
Activity Summary - Week Ending on 17 October 2025
- Red Sky identified 5,541 connections from ‘new’ and unique, compromised IP addresses
- VMHeaven in the Germany hit 386x
- CISA Alert – Lessons Learned from an Incident Response Engagement
- CVE-2024-3640
Activity Summary - Week Ending on 10 October 2025
- Red Sky identified 10,557 connections from ‘new’ and unique, compromised IP addresses
- HostPlus LTD in the UK hit 11,780x
- CISA Alert – Definitive View of Your OT Architecture
- CVE-2025-20333 and CVE-
Activity Summary - Week Ending on 3 October 2025
- Red Sky identified 7,783 connections from ‘new’ and unique, compromised IP addresses
- Flokinet[.]is in Iceland hit 20x 2nd week
- CISA Alert – OT Protection
- Creating & Maintaining a Definitive View of Y
