iocs (3)

12227229689?profile=RESIZE_400xAdvanced Persistent Threat (APT) actors have exploited known vulnerabilities in Zoho ManageEngine and Fortinet VPN products to hack an organization in the aeronautical sector, according to a joint report from the FBI, the Cybersecurity and Infrastructure Security Agency (CISA), and the Cyber Command’s Cyber National Mission Force (CNMF).  Impacting more than 20 on-premises Zoho ManageEngine products, the first bug, tracked as CVE-2022-47966 (CVSS score of 9.8), allows remote attackers to execute

10921768884?profile=RESIZE_400xEnd of 2022 - Week Ending 30 December 2022:

  • Red Sky Alliance identified 19,712 connections from new IP’s checking in with our Sinkholes
  • Frantech[.]ca in NYC hit 23x
  • Analysts identified 867 new IP addresses participating in various Botnets
  • 2022-2023ZeroBot
  • Ten (10) Data Set Stats
  • Red Sky Tools
  • Red Sky Partners
  • LastPass

Link to .pdf : IR-22-364-001_weekly364.pdf

IP

Contacts

199.195.249.252

56

87.236.20.241

49

185.151.48.131

49

68.178.224.252

48

62.210.185.4

37

6325083890?profile=RESIZE_400xThere is a Russian saying that rings true in protecting entities against cyber threats, “I am not concerned about all of the wolves in Siberia, I am only concerned about the wolves that are now chasing my sleigh.”  The world is full of cyber threats, hackers and state sponsored cyber terrorists who are targeting governments, businesses, and organizations.  The way Red Sky Alliance can help the maritime industry and its supply chain is to focus on the cyber threats directly targeting a specific o