Sort by
Activity Summary - Week Ending on 27 March 2026
- Red Sky identified 8,889 connections from ‘new’ and unique, compromised IP addresses
- TechOff Srv LTD in the Netherlands hit 7,881x
- CISA Warning: Russian Intelligence Services (RIS) & CMA
- Combating D
Activity Summary - Week Ending on 20 March 2026
- Red Sky identified 8,956 connections from ‘new’ and unique, compromised IP addresses
- Majestic Hosting Solutions in the US hit 32x
- CISA Warning: Iran Attacks Numerous CVEs
- CISA (BOD) 22-01
- Apple fixing
Activity Summary - Week Ending on 13 March 2026
- Red Sky identified 8,947 connections from ‘new’ and unique, compromised IP addresses
- FlokiNET ehf in Romania hit 52x
- CISA Warning: Omnissa, SolarWinds, & EPM
- 79 Microsoft CVEs
- OpenClaw
- ClawdBot and
Activity Summary - Week Ending on 6 March 2026
- Red Sky identified 9,080 connections from ‘new’ and unique, compromised IP addresses
- Amazon Data Services in the US hit 289x
- CISA Warning: Cisco SD-WAN Systems
- Zoom and Goggle Meet Vulnerabilities
- Dort
Activity Summary - Week Ending on 27 February 2026
- Red Sky identified 8,121 connections from ‘new’ and unique, compromised IP addresses
- Legaco Networks B.V. in the S. Korea hit 46x (2nd week)
- CISA Warning: RoundCube
- Foxit and Apryse
- Hunting for Bug
Activity Summary - Week Ending on 20 February 2026
- Red Sky identified 8,417 connections from ‘new’ and unique, compromised IP addresses
- Legaco Networks B.V. in the S. Korea hit 37x
- CISA Warning: OpenEoX
- Product Lifecycle Management
- Windows Malware
Activity Summary - Week Ending on 13 February 2026
- Red Sky identified 9,572 connections from ‘new’ and unique, compromised IP addresses
- Techoff SRV LTD in the Netherlands hit 6,950x
- CISA Warning: Reducing the Attack Surface for End-of-Support Edge
Activity Summary - Week Ending on 6 February 2026
- Red Sky identified 8,740 connections from ‘new’ and unique, compromised IP addresses
- Oracle Svenska AB in Singapore hit 525x (2nd week)
- CISA Warning: Fortinet Bypass Vulnerability CVE-2026-24858
- M
Activity Summary - Week Ending on 30 January 2026
- Red Sky identified 8,740 connections from ‘new’ and unique, compromised IP addresses
- Oracle Svenska AB in Singapore hit 299x
- CISA Warning: Five KEV Catalog Up-Dates
- Hijacks in Claude Code
- Under
Activity Summary - Week Ending on 23 January 2026
- Red Sky identified 4,795 connections from ‘new’ and unique, compromised IP addresses
- Microsoft Corp in S. Korea hit 1,258x
- CISA Warning: AI in OT
- AutoLogger-Diagtrack-Listener.etl
- Event Tracing for
Activity Summary - Week Ending on 16 January 2026
- Red Sky identified 12,819 connections from ‘new’ and unique, compromised IP addresses
- M247 LTD Copenhagen, in Denmark hit 224x
- CISA Warning: PowerPoint Code Injection Vulnerability
- CTAC – Dark Web
Activity Summary - Week Ending on 9 January 2026
- Red Sky identified 12,819 connections from ‘new’ and unique, compromised IP addresses
- M247 LTD Copenhagen, in Denmark hit 224x
- CISA Warning: AzeoTech DAQFactory
- Cyber Analyst Burnout
- The Kimwolf Bot
Activity Summary - Week Ending on 2 January 2026
- Red Sky identified 7,058 connections from ‘new’ and unique, compromised IP addresses
- Microsoft in Singapore hit 1,350x
- CISA – Mitsubishi Electric Air Conditioning Systems
- CTAC: Malicious Emails – 30
Activity Summary - Week Ending on 26 December 2025
- Red Sky identified 7,058 connections from ‘new’ and unique, compromised IP addresses
- Microsoft in Singapore hit 1,350x
- CISA – Cisco; Sonic Wall SMA1000; & ASUS
- CTAC: Dark Web Collection – 90 Day
Activity Summary - Week Ending on 19 December 2025
- Red Sky identified 10,237 connections from ‘new’ and unique, compromised IP addresses
- Microsoft in S. Korea hit 665x
- CISA – BOD & Sierra Wireless AirLink ALEOS
- CVE-2025-14174
- React2Shell
- CVE-20
Activity Summary - Week Ending on 12 December 2025
- Red Sky identified 10,237 connections from ‘new’ and unique, compromised IP addresses
- Microsoft in Japan hit 1,170x
- CISA – BrickStorm Malware
- Space Bears
- Quasar Inc.
- Phishing Attack Surge @ 4,1
Activity Summary - Week Ending on 5 December 2025
- Red Sky identified 6,881 connections from ‘new’ and unique, compromised IP addresses
- Microsoft in the US hit 548x
- CISA – Mobile Comms Best Practices
- CVE-2021-26829
- More AI Woes
- "useful-lib": "1.
Activity Summary - Week Ending on 28 November 2025
- Red Sky identified 6,881 connections from ‘new’ and unique, compromised IP addresses
- Microsoft in the US hit 341x
- CTAC - 90 days Keylogger Data
- CISA – Spyware on Messaging
- Lighthouse Phishing-as-a
Activity Summary - Week Ending on 21 November 2025
- Red Sky identified 6,881 connections from ‘new’ and unique, compromised IP addresses
- HostGlobalPlus in the UK hit 801x
- CISA – Akira Ransomware Up-Date
- Citrix zero-days
- CVE-2025-5777
- Cisco Identity
Activity Summary - Week Ending on 14 November 2025
- Red Sky identified 9,810 connections from ‘new’ and unique, compromised IP addresses
- PFCloud in the Netherlands hit 1,716x 2nd Week
- Dell’s Display and Peripherals Manager Vulnerabilities
- CVE-2025-4
