Sort by
Activity Summary - Week Ending on 19 July 2024:
- Red Sky identified 26,975 connections from ‘new’ and unique, compromised IP addresses
- Microsoft in US hit 103x (2nd week #1)
- 6 ‘new’ Botnets hits
- APT40
- Autonomous Security Operations
- Auto
Activity Summary - Week Ending on 20 September 2024:
- Red Sky identified 702 connections from ‘new’ and unique, compromised IP addresses
- MicroSoft in Australia hit 239x 2nd week
- 11 ‘new’ Botnets hits
- Post-Quantum Cryptography
- Enterprise Risks
- Quant
Activity Summary - Week Ending on 21 February 2025:
- Red Sky identified 16,544 connections from ‘new’ and unique, compromised IP addresses
- Ekabi LLC in Netherlands hit 203x 2nd week
- Red Sky Alliance Threat Recon Data Collection (last 90 days)
- CISA Al
Activity Summary - Week Ending on 23 August 2024:
- Red Sky identified 23,776 connections from ‘new’ and unique, compromised IP addresses
- DigitalOcean in Holland hit 11x
- 13 ‘new’ Botnets hits
- Fake Donation Web Sites
- Orion and Carbon Black
- End of Summ
Activity Summary - Week Ending on 16 August 2024:
- Red Sky identified 23,776 connections from ‘new’ and unique, compromised IP addresses
- DigitalOcean in Holland hit 11x
- 13 ‘new’ Botnets hits
- ScrubCrypt
- VenomRAT
- LNK File
- Removing FF FE
- OverScrap
Activity Summary - Week Ending on 7 June 2024:
- Red Sky identified 18,640 connections from ‘new’ unique IP addresses
- JGG Internet Services Ltd in Belize hit 139x
- 11 ‘new’ Botnets hits
- AWS S3
- Misconfigured S3 Buckets
- Enumeration
- Poland Attack
Activity Summary - Week Ending on 31 May 2024:
- Red Sky identified 11,067 connections from ‘new’ unique IP addresses
- Contabo[.]com in Singapore hit 39x
- 13 ‘new’ Botnets hits
- Brokewell Malware
- Android Banking App
- Google Chrome
- Drone Attacks
End of 2022 - Week Ending 30 December 2022:
- Red Sky Alliance identified 19,712 connections from new IP’s checking in with our Sinkholes
- Frantech[.]ca in NYC hit 23x
- Analysts identified 867 new IP addresses participating in various Botnets
- 2022-2023Z
Activity Summary - Week Ending on 28 June 2024:
- Red Sky identified 19,718 connections from ‘new’ and unique, compromised IP addresses
- Amazon in Japan hit 92x
- 9 ‘new’ Botnets hits
- Evading Semiconductor Technology Controls
- ALD - Atomic Laye
Activity Summary - Week Ending on 14 February 2025:
- Red Sky identified 19,619 connections from ‘new’ and unique, compromised IP addresses
- Ekabi LLC in Netherlands hit 198x
- Red Sky Alliance Dark Web – Ransomware Data Collection (last 365 days)
- CISA
Activity Summary - Week Ending on 20 January 2023:
- Red Sky Alliance identified 23,585 connections from new IP’s checking in with our Sinkholes
- Achtung - ovh[.]com in Germany hit 197x
- Analysts identified 472 new IP addresses participating in various
Activity Summary - Week Ending on 4 October 2024:
- Red Sky identified 15,783 connections from ‘new’ and unique, compromised IP addresses
- Interlan Communications in the UK hit 2,525 week
- 11 ‘new’ Botnets hits
- macOS Atomic Stealers
- Amos to Poseidon
- B
Activity Summary - Week Ending on 21 June 2024:
- Red Sky identified 18,640 connections from ‘new’ unique IP addresses
- Syndesi Networks B.V. in Germany hit 8x
- 15 ‘new’ Botnets hits
- Shinra Ransomware
- Limpopo Ransomware
- boot status policy
- Socotra Ransom
Activity Summary - Week Ending on 10 January 2025:
- Red Sky identified 19,240 connections from ‘new’ and unique, compromised IP addresses
- DataCamp in Switzerland hit 210x
- Red Sky Alliance Malicious E-Mail Data Collection (last 90 days)
- CISA Report 01
Activity Summary - Week Ending on 23 March 2023:
- Red Sky Alliance identified 33,558 connections from new IP’s checking in with our Sinkholes
- RackForest in Hungary hit
- Analysts identified 438 ‘new’ IP addresses participating in various Botnets
- Dark W
Activity Summary - Week Ending on 13 September 2024:
- Red Sky identified 1,251 connections from ‘new’ and unique, compromised IP addresses
- MicroSoft in Australia hit 187x
- 11 ‘new’ Botnets hits
- SideWalk
- GeoServer Vulnerability
- Linux Backdoor
- Colombia
Activity Summary - Week Ending on 6 September 2024:
- Red Sky identified 3,027 connections from ‘new’ and unique, compromised IP addresses
- Hostglobal in UK hit 1,883 2nd week
- 7 ‘new’ Botnets hits
- VPN Vulnerabilities
- Iran based Cyber Attackers
- Cross-Se
Activity Summary - Week Ending on 6 April 2023:
- Red Sky Alliance identified 27,743 connections from new IP’s checking in with our Sinkholes
- Contabo GmbH in Germany hit 58x
- 10 ‘new’ Botnets hits
- 202,557 ‘new’ Sinkhole hits
- IceFire Ransomware
- OPIsra
Activity Summary - Week Ending on 24 January 2025:
- Red Sky identified 14,513 connections from ‘new’ and unique, compromised IP addresses
- Data Center in Germany hit 375x
- Red Sky Alliance Sinkhole Traffic Data Collection (last 90 days)
- CISA Report 01
Activity Summary - Week Ending on 25 October 2024:
- Red Sky identified 9,653 connections from ‘new’ and unique, compromised IP addresses
- DataCamp Limited in Germany hit 721x
- Dark Web collection 10,072 hits (last 90 days)
- Known Exploited Vulnerabiliti
