Information Technology - Midcap
REDXRAY Threat Report
All hits in this notification should be investigated by an analyst before being actioned or blocked. For more information, please contact Wapack Labs at 888-733-9729.
Anixter International Inc
Botnet Tracker -
0 Breach Data -
2 Keylogger Records -
0 Malicious Emails -
0 Malicious Emails Context-
0 Malicious Email Detections-
0 Pastebin -
0 Sinkhole Traffic -
0 ThreatRecon Records -
0
Badger Meter Inc.
Botnet Tracker -
0 Breach Data -
2 Keylogger Records -
0 Malicious Emails -
0 Malicious Emails Context-
0 Malicious Email Detections-
0 Pastebin -
0 Sinkhole Traffic -
0 ThreatRecon Records -
0
Electronics for Imaging Inc
Botnet Tracker -
0 Breach Data -
2 Keylogger Records -
0 Malicious Emails -
0 Malicious Emails Context-
0 Malicious Email Detections-
0 Pastebin -
0 Sinkhole Traffic -
0 ThreatRecon Records -
0
GTT Communications Inc
Botnet Tracker -
0 Breach Data -
164 Keylogger Records -
0 Malicious Emails -
0 Malicious Emails Context-
0 Malicious Email Detections-
0 Pastebin -
0 Sinkhole Traffic -
0 ThreatRecon Records -
0
Insight Enterprises Inc
Botnet Tracker -
0 Breach Data -
8 Keylogger Records -
0 Malicious Emails -
0 Malicious Emails Context-
0 Malicious Email Detections-
0 Pastebin -
0 Sinkhole Traffic -
0 ThreatRecon Records -
0
Methode Electronics Inc
Botnet Tracker -
0 Breach Data -
2 Keylogger Records -
0 Malicious Emails -
0 Malicious Emails Context-
0 Malicious Email Detections-
0 Pastebin -
0 Sinkhole Traffic -
0 ThreatRecon Records -
0
Plexus Corp
Botnet Tracker -
0 Breach Data -
2 Keylogger Records -
0 Malicious Emails -
0 Malicious Emails Context-
0 Malicious Email Detections-
0 Pastebin -
0 Sinkhole Traffic -
0 ThreatRecon Records -
0
Power Integrations Inc
Botnet Tracker -
0 Breach Data -
2 Keylogger Records -
0 Malicious Emails -
0 Malicious Emails Context-
0 Malicious Email Detections-
0 Pastebin -
0 Sinkhole Traffic -
0 ThreatRecon Records -
0
Stratasys Ltd
Botnet Tracker -
0 Breach Data -
2 Keylogger Records -
0 Malicious Emails -
0 Malicious Emails Context-
0 Malicious Email Detections-
0 Pastebin -
0 Sinkhole Traffic -
0 ThreatRecon Records -
0
Svmk Inc
Botnet Tracker -
0 Breach Data -
4 Keylogger Records -
0 Malicious Emails -
0 Malicious Emails Context-
0 Malicious Email Detections-
0 Pastebin -
0 Sinkhole Traffic -
0 ThreatRecon Records -
0
TiVo Corp
Botnet Tracker -
0 Breach Data -
2 Keylogger Records -
0 Malicious Emails -
0 Malicious Emails Context-
0 Malicious Email Detections-
0 Pastebin -
0 Sinkhole Traffic -
0 ThreatRecon Records -
0
21Vianet Group Inc: No new indicators for this company in the past 24 hours.
2U Inc: No new indicators for this company in the past 24 hours.
3D Systems Corp: No new indicators for this company in the past 24 hours.
8x8 Inc: No new indicators for this company in the past 24 hours.
ADTRAN Inc: No new indicators for this company in the past 24 hours.
AVX Corp.: No new indicators for this company in the past 24 hours.
Acacia Communications Inc: No new indicators for this company in the past 24 hours.
Advanced Energy Industries Inc.: No new indicators for this company in the past 24 hours.
Alarm.com Holdings Inc: No new indicators for this company in the past 24 hours.
Altair Engineering Inc: No new indicators for this company in the past 24 hours.
Ambarella Inc: No new indicators for this company in the past 24 hours.
Amkor Technology Inc: No new indicators for this company in the past 24 hours.
AppFolio Inc: No new indicators for this company in the past 24 hours.
Appian Corp: No new indicators for this company in the past 24 hours.
Au Optronics Corp: No new indicators for this company in the past 24 hours.
Aurora Mobile Ltd: No new indicators for this company in the past 24 hours.
Avaya Holdings Corp: No new indicators for this company in the past 24 hours.
Belden Inc: No new indicators for this company in the past 24 hours.
Benchmark Electronics Inc: No new indicators for this company in the past 24 hours.
Benefitfocus Inc: No new indicators for this company in the past 24 hours.
BlackLine Inc: No new indicators for this company in the past 24 hours.
Bottomline Technologies Inc: No new indicators for this company in the past 24 hours.
Box Inc: No new indicators for this company in the past 24 hours.
Brooks Automation Inc: No new indicators for this company in the past 24 hours.
CSG Systems International Inc.: No new indicators for this company in the past 24 hours.
CTS Corp: No new indicators for this company in the past 24 hours.
Cabot Microelectronics Corp: No new indicators for this company in the past 24 hours.
Canadian Solar Inc: No new indicators for this company in the past 24 hours.
Carbon Black Inc: No new indicators for this company in the past 24 hours.
Carbonite Inc: No new indicators for this company in the past 24 hours.
Cardtronics plc: No new indicators for this company in the past 24 hours.
Celestica Inc: No new indicators for this company in the past 24 hours.
Cirrus Logic Inc.: No new indicators for this company in the past 24 hours.
Cision Ltd: No new indicators for this company in the past 24 hours.
Cloudera Inc: No new indicators for this company in the past 24 hours.
Coherent Inc: No new indicators for this company in the past 24 hours.
CommScope Holding Co Inc: No new indicators for this company in the past 24 hours.
CommVault Systems Inc: No new indicators for this company in the past 24 hours.
Computer Services Inc: No new indicators for this company in the past 24 hours.
Conduent Inc: No new indicators for this company in the past 24 hours.
Cornerstone OnDemand Inc: No new indicators for this company in the past 24 hours.
Cray Inc: No new indicators for this company in the past 24 hours.
Descartes Systems Group Inc %28The%29: No new indicators for this company in the past 24 hours.
Diebold Nixdorf Inc: No new indicators for this company in the past 24 hours.
Diodes Inc: No new indicators for this company in the past 24 hours.
Domo Inc: No new indicators for this company in the past 24 hours.
EVERTEC Inc: No new indicators for this company in the past 24 hours.
EVO Payments Inc: No new indicators for this company in the past 24 hours.
Ebix Inc: No new indicators for this company in the past 24 hours.
Endava plc: No new indicators for this company in the past 24 hours.
Everbridge Inc: No new indicators for this company in the past 24 hours.
ExlService Holdings Inc: No new indicators for this company in the past 24 hours.
FARO Technologies Inc: No new indicators for this company in the past 24 hours.
Fabrinet: No new indicators for this company in the past 24 hours.
Fastly Inc: No new indicators for this company in the past 24 hours.
Finisar Corp: No new indicators for this company in the past 24 hours.
FireEye Inc: No new indicators for this company in the past 24 hours.
Fitbit Inc: No new indicators for this company in the past 24 hours.
Five9 Inc: No new indicators for this company in the past 24 hours.
ForeScout Technologies Inc: No new indicators for this company in the past 24 hours.
FormFactor Inc: No new indicators for this company in the past 24 hours.
Globant SA: No new indicators for this company in the past 24 hours.
GreenSky Inc: No new indicators for this company in the past 24 hours.
Hollysys Automation Technologies Ltd: No new indicators for this company in the past 24 hours.
II VI Inc: No new indicators for this company in the past 24 hours.
Inphi Corp: No new indicators for this company in the past 24 hours.
Instructure Inc: No new indicators for this company in the past 24 hours.
InterDigital Inc: No new indicators for this company in the past 24 hours.
Itron Inc: No new indicators for this company in the past 24 hours.
JinkoSolar Holding Co Ltd: No new indicators for this company in the past 24 hours.
KBR Inc: No new indicators for this company in the past 24 hours.
KEMET Corp: No new indicators for this company in the past 24 hours.
Knowles Corp: No new indicators for this company in the past 24 hours.
Kulicke and Soffa Industries Inc: No new indicators for this company in the past 24 hours.
Lattice Semiconductor Corp: No new indicators for this company in the past 24 hours.
LivePerson Inc: No new indicators for this company in the past 24 hours.
Luxoft Holding Inc: No new indicators for this company in the past 24 hours.
MACOM Technology Solutions Holdings Inc: No new indicators for this company in the past 24 hours.
MTS Systems Corp: No new indicators for this company in the past 24 hours.
ManTech International Corp: No new indicators for this company in the past 24 hours.
MaxLinear Inc: No new indicators for this company in the past 24 hours.
MicroStrategy Inc: No new indicators for this company in the past 24 hours.
Mimecast Ltd: No new indicators for this company in the past 24 hours.
NETGEAR Inc: No new indicators for this company in the past 24 hours.
NIC Inc: No new indicators for this company in the past 24 hours.
Nanometrics Inc: No new indicators for this company in the past 24 hours.
NetScout Systems Inc: No new indicators for this company in the past 24 hours.
Nova Measuring Instruments Ltd: No new indicators for this company in the past 24 hours.
Novanta Inc: No new indicators for this company in the past 24 hours.
OSI Systems Inc: No new indicators for this company in the past 24 hours.
Opera Ltd: No new indicators for this company in the past 24 hours.
PC Connection Inc: No new indicators for this company in the past 24 hours.
PROS Holdings Inc: No new indicators for this company in the past 24 hours.
PagerDuty Inc: No new indicators for this company in the past 24 hours.
Perficient Inc: No new indicators for this company in the past 24 hours.
Plantronics Inc.: No new indicators for this company in the past 24 hours.
Pluralsight Inc: No new indicators for this company in the past 24 hours.
Presidio Inc: No new indicators for this company in the past 24 hours.
Progress Software Corp: No new indicators for this company in the past 24 hours.
Q2 Holdings Inc: No new indicators for this company in the past 24 hours.
QAD Inc: No new indicators for this company in the past 24 hours.
QIWI plc: No new indicators for this company in the past 24 hours.
Quantenna Communications Inc: No new indicators for this company in the past 24 hours.
Radware Ltd: No new indicators for this company in the past 24 hours.
Rambus Inc: No new indicators for this company in the past 24 hours.
Rapid7 Inc: No new indicators for this company in the past 24 hours.
Rogers Corp.: No new indicators for this company in the past 24 hours.
Rudolph Technologies Inc.: No new indicators for this company in the past 24 hours.
SPS Commerce Inc: No new indicators for this company in the past 24 hours.
SailPoint Technologies Holdings Inc: No new indicators for this company in the past 24 hours.
Sanmina Corp: No new indicators for this company in the past 24 hours.
Sapiens International Corp NV: No new indicators for this company in the past 24 hours.
ScanSource Inc: No new indicators for this company in the past 24 hours.
SecureWorks Corp: No new indicators for this company in the past 24 hours.
Semtech Corp: No new indicators for this company in the past 24 hours.
Silicon Motion Technology Corp: No new indicators for this company in the past 24 hours.
SolarEdge Technologies Inc: No new indicators for this company in the past 24 hours.
SunPower Corp: No new indicators for this company in the past 24 hours.
Sykes Enterprises Inc: No new indicators for this company in the past 24 hours.
Synaptics Inc: No new indicators for this company in the past 24 hours.
TTEC Holdings Inc: No new indicators for this company in the past 24 hours.
TTM Technologies Inc: No new indicators for this company in the past 24 hours.
Talend SA: No new indicators for this company in the past 24 hours.
Tenable Holdings Inc: No new indicators for this company in the past 24 hours.
Tower Semiconductor Ltd: No new indicators for this company in the past 24 hours.
Upland Software Inc: No new indicators for this company in the past 24 hours.
Varonis Systems Inc: No new indicators for this company in the past 24 hours.
Verra Mobility Corp: No new indicators for this company in the past 24 hours.
Viavi Solutions Inc: No new indicators for this company in the past 24 hours.
Virtusa Corp: No new indicators for this company in the past 24 hours.
Vishay Intertechnology Inc.: No new indicators for this company in the past 24 hours.
WNS %28Holdings%29 Ltd: No new indicators for this company in the past 24 hours.
Workiva Inc: No new indicators for this company in the past 24 hours.
Xperi Corp: No new indicators for this company in the past 24 hours.
Yext Inc: No new indicators for this company in the past 24 hours.
Zuora Inc: No new indicators for this company in the past 24 hours.
ePlus Inc: No new indicators for this company in the past 24 hours.
Botnet_tracker
If your IP address is found in botnet tracker, it means that it was seen in a communication with a malicious endpoint. This does not automatically indicate a malware infection as there are a number of reasons why two IP addresses might communicate. The traffic should first be inspected before escalating to incident responders.
Keylogger
A keylogger hit means your domain or IP address appeared in a keylogger output file. This would mean one of the following things: 1) A keylogger malware is running on your network. 2) A username and password belonging to an employee was captured by a keylogger. 3) An email address was observed in clipboard data on an infected computer. For example somebody cut and paste an email address belonging to your organization. The raw source data must first be investigated to determine course of action.
Malicious Emails
If your domain or IP address shows up in this collection, it means it was observed in the header of an email that has been identified as malicious (1 or more AV detection). The raw email should be inspected to see whether it was sent to or from your organization, or if it was spoofed using your organizations data. It should be noted that some AV vendors classify emails as malicious when they are actually benign. All malicious emails hits only indicate targeting, not malware infections.
Pastebin
A pastebin hit simply means your information was observed in a paste on pastebin.com. There are numerous reasons information would be contained in a paste – some malicious and some benign. Each pastebin hit must be individually analyzed to determine context.
Sinkhole data
A sinkhole hit means your IP was observed in weblogs from our sinkhole server. Similar to the botnet_tracker hits, it only means that communication was observed. The nature of that communication needs to be determined from the raw sinkhole record. If the sinkhole hit is a result of a malware infection, then the information should be referred to incident responders.
Breach Data
Breach data hits are from public database leaks. Depending on the nature of the leaked database, exposed information may vary from just email addresses, to username and password combinations and other personally identifiable information. RedXray contains the raw breach data so you can easily see what type of data has been exposed. If the breach data contains passwords then Wapack Labs recommends enforcing a password reset and investigating whether there has been unauthorized access of the account.
Threat Recon
Threat recon consists of both primary sourced indicators and open sourced indicators from dozens of sources. Each hit from this collection should be individually analyzed as each source has different context. Threat recon records contain references to the original source.
