Activity Summary - Week Ending on 14 January 2022:
- Red Sky Alliance identified 24,345 connections from new IP’s checking in with our Sinkholes
- Microsoft IP’s in UK and N. Ireland hit
- Analysts identified 1,435 new IP addresses participating in various Botnets
- Rook Ransomware
- More Log4j
- Ukraine Cyber Bust
- UK NHS
- Who’s Winning?
- Google Docs
- The Electric Grid’s Hot Wires
- BLM suing LAPD
Link to full report: IR-22-014-001_weekly014.pdf
Activity Summary - Week Ending 20 November 2020:
- Red Sky Alliance identified 35,859 connections from new unique IP addresses
- Microsoft IP is a compromised C2
- APT 10 – Stone Panda back in the Top 5 Threat Actor Groups
- Capcom Hack - Part II
- Kucoin Exchange Hacked
- Kucoin-activity[.]com - Beware
- Cryptocurrency Challenges
- Plowshares going to Prison
- Black activists in Portland OR doing the Moonwalk
- Sodinokibi using BLM as Registry key
Link to full report: IR-20-325-001-Tactical Cyber Brief325_FINAL.
