Sort by
Activity Summary - Week Ending on 30 May 2025:
- Red Sky identified 18,890 connections from ‘new’ and unique, compromised IP addresses
- Contabo[.]com in Germany hit 1,714x
- RedSky Malicious E-mails Data Collection – last 7 Days
- CISA Alert – Best Practi
Activity Summary - Week Ending on 20 June 2025:
- Red Sky identified 7,274 connections from ‘new’ and unique, compromised IP addresses
- CyberZone in US hit 88x
- CISA Alert – ProGauge MagLink LX
- CVE-2025-5310
- Fake CAPTCHAs
- Russian Doppelganger
- Lo
Activity Summary - Week Ending on 19 July 2024:
- Red Sky identified 26,975 connections from ‘new’ and unique, compromised IP addresses
- Microsoft in US hit 103x (2nd week #1)
- 6 ‘new’ Botnets hits
- APT40
- Autonomous Security Operations
- Auto
Activity Summary - Week Ending on 20 September 2024:
- Red Sky identified 702 connections from ‘new’ and unique, compromised IP addresses
- MicroSoft in Australia hit 239x 2nd week
- 11 ‘new’ Botnets hits
- Post-Quantum Cryptography
- Enterprise Risks
- Quant
Activity Summary - Week Ending on 21 February 2025:
- Red Sky identified 16,544 connections from ‘new’ and unique, compromised IP addresses
- Ekabi LLC in Netherlands hit 203x 2nd week
- Red Sky Alliance Threat Recon Data Collection (last 90 days)
- CISA Al
Activity Summary - Week Ending on 23 August 2024:
- Red Sky identified 23,776 connections from ‘new’ and unique, compromised IP addresses
- DigitalOcean in Holland hit 11x
- 13 ‘new’ Botnets hits
- Fake Donation Web Sites
- Orion and Carbon Black
- End of Summ
Activity Summary - Week Ending on 16 August 2024:
- Red Sky identified 23,776 connections from ‘new’ and unique, compromised IP addresses
- DigitalOcean in Holland hit 11x
- 13 ‘new’ Botnets hits
- ScrubCrypt
- VenomRAT
- LNK File
- Removing FF FE
- OverScrap
Activity Summary - Week Ending on 7 June 2024:
- Red Sky identified 18,640 connections from ‘new’ unique IP addresses
- JGG Internet Services Ltd in Belize hit 139x
- 11 ‘new’ Botnets hits
- AWS S3
- Misconfigured S3 Buckets
- Enumeration
- Poland Attack
Activity Summary - Week Ending on 31 May 2024:
- Red Sky identified 11,067 connections from ‘new’ unique IP addresses
- Contabo[.]com in Singapore hit 39x
- 13 ‘new’ Botnets hits
- Brokewell Malware
- Android Banking App
- Google Chrome
- Drone Attacks
Activity Summary - Week Ending on 14 February 2025:
- Red Sky identified 19,619 connections from ‘new’ and unique, compromised IP addresses
- Ekabi LLC in Netherlands hit 198x
- Red Sky Alliance Dark Web – Ransomware Data Collection (last 365 days)
- CISA
Activity Summary - Week Ending on 20 January 2023:
- Red Sky Alliance identified 23,585 connections from new IP’s checking in with our Sinkholes
- Achtung - ovh[.]com in Germany hit 197x
- Analysts identified 472 new IP addresses participating in various
Activity Summary - Week Ending on 28 June 2024:
- Red Sky identified 19,718 connections from ‘new’ and unique, compromised IP addresses
- Amazon in Japan hit 92x
- 9 ‘new’ Botnets hits
- Evading Semiconductor Technology Controls
- ALD - Atomic Laye
End of 2022 - Week Ending 30 December 2022:
- Red Sky Alliance identified 19,712 connections from new IP’s checking in with our Sinkholes
- Frantech[.]ca in NYC hit 23x
- Analysts identified 867 new IP addresses participating in various Botnets
- 2022-2023Z
Activity Summary - Week Ending on 4 October 2024:
- Red Sky identified 15,783 connections from ‘new’ and unique, compromised IP addresses
- Interlan Communications in the UK hit 2,525 week
- 11 ‘new’ Botnets hits
- macOS Atomic Stealers
- Amos to Poseidon
- B
Activity Summary - Week Ending on 10 January 2025:
- Red Sky identified 19,240 connections from ‘new’ and unique, compromised IP addresses
- DataCamp in Switzerland hit 210x
- Red Sky Alliance Malicious E-Mail Data Collection (last 90 days)
- CISA Report 01
Activity Summary - Week Ending on 21 June 2024:
- Red Sky identified 18,640 connections from ‘new’ unique IP addresses
- Syndesi Networks B.V. in Germany hit 8x
- 15 ‘new’ Botnets hits
- Shinra Ransomware
- Limpopo Ransomware
- boot status policy
- Socotra Ransom
Activity Summary - Week Ending on 11 April 2025:
- Red Sky identified 19,848 connections from ‘new’ and unique, compromised IP addresses
- BullRDP in Germany hit 118x
- RedSky Malicious Email Data Collection – last 30 Days
- CISA Alert – Fast Flux
- PDNS pro
Activity Summary - Week Ending on 13 September 2024:
- Red Sky identified 1,251 connections from ‘new’ and unique, compromised IP addresses
- MicroSoft in Australia hit 187x
- 11 ‘new’ Botnets hits
- SideWalk
- GeoServer Vulnerability
- Linux Backdoor
- Colombia
Activity Summary - Week Ending on 23 March 2023:
- Red Sky Alliance identified 33,558 connections from new IP’s checking in with our Sinkholes
- RackForest in Hungary hit
- Analysts identified 438 ‘new’ IP addresses participating in various Botnets
- Dark W
Activity Summary - Week Ending on 6 September 2024:
- Red Sky identified 3,027 connections from ‘new’ and unique, compromised IP addresses
- Hostglobal in UK hit 1,883 2nd week
- 7 ‘new’ Botnets hits
- VPN Vulnerabilities
- Iran based Cyber Attackers
- Cross-Se