Sort by
Activity Summary - Week Ending on 15 May 2026
- Red Sky identified 9,598 connections from ‘new’ and unique, compromised IP addresses
- HostPapa in the US hit 438x (2nd week)
- CISA Alert: BerriAI LiteLLM SQL Injection Vulnerability
- KillSwitch
- Dirty F
Activity Summary - Week Ending on 8 May 2026
- Red Sky identified 4,954 connections from ‘new’ and unique, compromised IP addresses
- HostPapa in the US hit 312x
- CISA Alert: Adopting Agentic Artificial Intelligence (AI) Systems
- LLM-based Agentic AI Sys
Activity Summary - Week Ending on 1 May 2026
- Red Sky identified 10,471 connections from ‘new’ and unique, compromised IP addresses
- Telco Power Ltd in Germany hit 715x
- CISA Warning: Zero Trust Principles and OT
- Building Zero Trust Capacity
- CTAC –
Activity Summary - Week Ending on 24 April 2026
- Red Sky identified 5,778 connections from ‘new’ and unique, compromised IP addresses
- Meowcore Softworks LLC in Germany hit 140x
- CISA Warning: Apache ActiveMQ Improper Input Validation & Microsoft Vuln
Activity Summary - Week Ending on 17 April 2026
- Red Sky identified 16,010 connections from ‘new’ and unique, compromised IP addresses
- Limited Network LTD in the Netherlands hit 700
- CISA Warning: Ivanti Endpoint Manager Mobile (EPMM) & Black Shranta
Activity Summary - Week Ending on 10 April 2026
- Red Sky identified 9,547 connections from ‘new’ and unique, compromised IP addresses
- TechOff Srv LTD in the Netherlands hit 8,154x (3rd week)
- CISA Warning: Reducing Significant Risk of Known Exploited
Activity Summary - Week Ending on 3 April 2026
- Red Sky identified 10,722 connections from ‘new’ and unique, compromised IP addresses
- TechOff Srv LTD in the Netherlands hit 8,150x (2nd week)
- CISA Warning: Citrix NetScaler Out-of-Bounds Read Vulnerab
Activity Summary - Week Ending on 27 March 2026
- Red Sky identified 8,889 connections from ‘new’ and unique, compromised IP addresses
- TechOff Srv LTD in the Netherlands hit 7,881x
- CISA Warning: Russian Intelligence Services (RIS) & CMA
- Combating D
Activity Summary - Week Ending on 20 March 2026
- Red Sky identified 8,956 connections from ‘new’ and unique, compromised IP addresses
- Majestic Hosting Solutions in the US hit 32x
- CISA Warning: Iran Attacks Numerous CVEs
- CISA (BOD) 22-01
- Apple fixing
Activity Summary - Week Ending on 13 March 2026
- Red Sky identified 8,947 connections from ‘new’ and unique, compromised IP addresses
- FlokiNET ehf in Romania hit 52x
- CISA Warning: Omnissa, SolarWinds, & EPM
- 79 Microsoft CVEs
- OpenClaw
- ClawdBot and
Activity Summary - Week Ending on 6 March 2026
- Red Sky identified 9,080 connections from ‘new’ and unique, compromised IP addresses
- Amazon Data Services in the US hit 289x
- CISA Warning: Cisco SD-WAN Systems
- Zoom and Goggle Meet Vulnerabilities
- Dort
Activity Summary - Week Ending on 27 February 2026
- Red Sky identified 8,121 connections from ‘new’ and unique, compromised IP addresses
- Legaco Networks B.V. in the S. Korea hit 46x (2nd week)
- CISA Warning: RoundCube
- Foxit and Apryse
- Hunting for Bug
Activity Summary - Week Ending on 20 February 2026
- Red Sky identified 8,417 connections from ‘new’ and unique, compromised IP addresses
- Legaco Networks B.V. in the S. Korea hit 37x
- CISA Warning: OpenEoX
- Product Lifecycle Management
- Windows Malware
Activity Summary - Week Ending on 13 February 2026
- Red Sky identified 9,572 connections from ‘new’ and unique, compromised IP addresses
- Techoff SRV LTD in the Netherlands hit 6,950x
- CISA Warning: Reducing the Attack Surface for End-of-Support Edge
Activity Summary - Week Ending on 6 February 2026
- Red Sky identified 8,740 connections from ‘new’ and unique, compromised IP addresses
- Oracle Svenska AB in Singapore hit 525x (2nd week)
- CISA Warning: Fortinet Bypass Vulnerability CVE-2026-24858
- M
Activity Summary - Week Ending on 30 January 2026
- Red Sky identified 8,740 connections from ‘new’ and unique, compromised IP addresses
- Oracle Svenska AB in Singapore hit 299x
- CISA Warning: Five KEV Catalog Up-Dates
- Hijacks in Claude Code
- Under
Activity Summary - Week Ending on 23 January 2026
- Red Sky identified 4,795 connections from ‘new’ and unique, compromised IP addresses
- Microsoft Corp in S. Korea hit 1,258x
- CISA Warning: AI in OT
- AutoLogger-Diagtrack-Listener.etl
- Event Tracing for
Activity Summary - Week Ending on 16 January 2026
- Red Sky identified 12,819 connections from ‘new’ and unique, compromised IP addresses
- M247 LTD Copenhagen, in Denmark hit 224x
- CISA Warning: PowerPoint Code Injection Vulnerability
- CTAC – Dark Web
Activity Summary - Week Ending on 9 January 2026
- Red Sky identified 12,819 connections from ‘new’ and unique, compromised IP addresses
- M247 LTD Copenhagen, in Denmark hit 224x
- CISA Warning: AzeoTech DAQFactory
- Cyber Analyst Burnout
- The Kimwolf Bot
Activity Summary - Week Ending on 2 January 2026
- Red Sky identified 7,058 connections from ‘new’ and unique, compromised IP addresses
- Microsoft in Singapore hit 1,350x
- CISA – Mitsubishi Electric Air Conditioning Systems
- CTAC: Malicious Emails – 30
