All Articles - Intel Reports - Red Sky Alliance

Cyber Intel Report 06 06 2025

Activity Summary - Week Ending on 6 June 2025:

Red Sky identified 18,890 connections from ‘new’ and unique, compromised IP addresses
Contabo[.]com in Germany hit 1,714x
RedSky DarkWeb Data Collection – last 90 Days
CISA Alert – Santesoft
Color

Cyber Intel Report 30 May 2025

Activity Summary - Week Ending on 30 May 2025:

Red Sky identified 18,890 connections from ‘new’ and unique, compromised IP addresses
Contabo[.]com in Germany hit 1,714x
RedSky Malicious E-mails Data Collection – last 7 Days
CISA Alert – Best Practi

Cyber Intel Report 23 May 2025

Activity Summary - Week Ending on 23 May 2025:

Red Sky identified 16,345 connections from ‘new’ and unique, compromised IP addresses
Proton[.]me in France hit 1,196x 2^nd week
RedSky Malicious OSINT Data Collection – last 7 Days
CISA Alert – DEEBOT V

Cyber Intel Report 16 May 2025

Activity Summary - Week Ending on 16 May 2025:

Red Sky identified 16,345 connections from ‘new’ and unique, compromised IP addresses
Proton[.]me in France hit 1,164x
RedSky Malicious E-mail Data Collection – last 7 Days
CISA Alert – Hitachi Energy

Cyber Intel Report 05 09 2025

Activity Summary - Week Ending on 9 May 2025:

Red Sky identified 18,203 connections from ‘new’ and unique, compromised IP addresses
Netutils[.]io in France hit 15x
RedSky Malicious E-mail Data Collection – last 30 Days
CISA Alert – BrightSign
CVE-2

Cyber Intel Report 05 02 2025

Activity Summary - Week Ending on 2 May 2025:

Red Sky identified 18,203 connections from ‘new’ and unique, compromised IP addresses
Netutils[.]io in France hit 15x
RedSky Source Code Secrets Data Collection – last 90 Days
CISA Alert – Delta Electro

Cyber Intel Report 04 25 2025

Activity Summary - Week Ending on 25 April 2025:

Red Sky identified 13,055 connections from ‘new’ and unique, compromised IP addresses
HostBaltic in Lithuania hit 171x
RedSky ThreatRecon – last 365 Days
CISA Alert – Yokogawa
CVE-2025-1863
APT29/

Cyber Intel Report 04 18 2025

Activity Summary - Week Ending on 18 April 2025:

Red Sky identified 20,392 connections from ‘new’ and unique, compromised IP addresses
Netiface in France hit 1,051x
RedSky Store & Share Data Collection – last 90 Days
CISA Alert – Mitsubishi Electri

Cyber Intel Report 04 11 2025

Activity Summary - Week Ending on 11 April 2025:

Red Sky identified 19,848 connections from ‘new’ and unique, compromised IP addresses
BullRDP in Germany hit 118x
RedSky Malicious Email Data Collection – last 30 Days
CISA Alert – Fast Flux
PDNS pro

Cyber Intel Report 04 04 2025

Activity Summary - Week Ending on 4 April 2025:

Red Sky identified 12,395 connections from ‘new’ and unique, compromised IP addresses
Layerstack Cloud in Hong Kong hit 24x 2^nd week
RedSky Sinkhole Traffic – 1 Year
CISA Alert – Supply Chain Integrity

Cyber Intel Report 03 28 2025

Activity Summary - Week Ending on 28 March 2025:

Red Sky identified 16,964 connections from ‘new’ and unique, compromised IP addresses
Layerstack Cloud in Hong Kong hit 19x
CISA Alert – CVE’s: 2025-24472 & 2025-30066
RansomHub Affiliates
Custom

Cyber Intel Report 03 21 2025

Activity Summary - Week Ending on 21 March 2025:

Red Sky identified 13,150 connections from ‘new’ and unique, compromised IP addresses
RouterHosting LLC in Netherlands hit 200x
CISA Alert – RaaS Medusa Ransomware
Rclone
TinyShell Back Door
Junipe

Cyber Intel Report 03 14 2025

Activity Summary - Week Ending on 14 March 2025:

Red Sky identified 18,920 connections from ‘new’ and unique, compromised IP addresses
PureVPN in Netherlands hit 206x
CISA Alert - BACnet Capture Tool
Impersonation of Official Emails
Taiwan's Nation

Cyber Intel Report 03 07 2025

Activity Summary - Week Ending on 7 March 2025:

Red Sky identified 20,803 connections from ‘new’ and unique, compromised IP addresses
TechOff Services LTD in Netherlands hit 3,081x
CISA Alert - Edimax IC-7100 IP Camera: All versions
Lynx Ransomware

Cyber Intel Report 02 28 2025

Activity Summary - Week Ending on 28 February 2025:

Red Sky identified 11,954 connections from ‘new’ and unique, compromised IP addresses
1337 Services GmbH in Poland hit 27x
Red Sky Alliance Dark Web Keywords Data Collection (last 365 days)
CISA A

Cyber Intel Report 02 21 2025

Activity Summary - Week Ending on 21 February 2025:

Red Sky identified 16,544 connections from ‘new’ and unique, compromised IP addresses
Ekabi LLC in Netherlands hit 203x 2^nd week
Red Sky Alliance Threat Recon Data Collection (last 90 days)
CISA Al

Cyber Intel Report 02 14 2025

Activity Summary - Week Ending on 14 February 2025:

Red Sky identified 19,619 connections from ‘new’ and unique, compromised IP addresses
Ekabi LLC in Netherlands hit 198x
Red Sky Alliance Dark Web – Ransomware Data Collection (last 365 days)
CISA

Cyber Intel Report 02 07 2025

Activity Summary - Week Ending on 7 February 2025:

Red Sky identified 12,120 connections from ‘new’ and unique, compromised IP addresses
Asia Pacific Network Information Center in Thailand 95x
Red Sky Alliance Keylogger Data Collection (last 365 da

Cyber Intel Report - 01 31 2025

Activity Summary - Week Ending on 31 January 2025:

Red Sky identified 12,783 connections from ‘new’ and unique, compromised IP addresses
Data Center in Germany hit 197x 2^nd week
Red Sky Alliance Source Code Secrets Data Collection (last 90 days)
CIS

Cyber Intel Report 01 24 2025

Activity Summary - Week Ending on 24 January 2025:

Red Sky identified 14,513 connections from ‘new’ and unique, compromised IP addresses
Data Center in Germany hit 375x
Red Sky Alliance Sinkhole Traffic Data Collection (last 90 days)
CISA Report 01

Activity Summary - Week Ending on 6 June 2025:

Activity Summary - Week Ending on 30 May 2025:

Activity Summary - Week Ending on 23 May 2025:

Activity Summary - Week Ending on 16 May 2025:

Activity Summary - Week Ending on 9 May 2025:

Activity Summary - Week Ending on 2 May 2025:

Activity Summary - Week Ending on 25 April 2025:

Activity Summary - Week Ending on 18 April 2025:

Activity Summary - Week Ending on 11 April 2025:

Activity Summary - Week Ending on 4 April 2025:

Activity Summary - Week Ending on 28 March 2025:

Activity Summary - Week Ending on 21 March 2025:

Activity Summary - Week Ending on 14 March 2025:

Activity Summary - Week Ending on 7 March 2025:

Activity Summary - Week Ending on 28 February 2025:

Activity Summary - Week Ending on 21 February 2025:

Activity Summary - Week Ending on 14 February 2025:

Activity Summary - Week Ending on 7 February 2025:

Activity Summary - Week Ending on 31 January 2025:

Activity Summary - Week Ending on 24 January 2025:

Note: this page contains paid content.

Note: this page contains paid content.

Note: this page contains paid content.