Activity Summary - Week Ending on 15 August 2025
- Red Sky identified 9,503 connections from ‘new’ and unique, compromised IP addresses
- Cheapy-Host in the Netherlands hit 114x
- CISA Alert - Dreame Technology iOS and Android Mobile Applications
- CVE-2025-8393
- DaMaGeLaB into XSS Forum
- REvil, LockBit, Conti, and Qiliin
- UK – M&S Supermarket Restart
- KLM or Air France emails
- Embargo Ransomware Gang and Black Cats
- Targeteer – XSS Forum
Link to full report: IR-25-227-001_weekly227.pdf
