popup

Cyber Threat Trends

  1. Week Month

Gemelli flickerflypro flickerfly

Summary: 2025/04/28 19:31

Inquiry period : 2025/04/27 19:31 ~ 2025/04/28 19:31 (1 days), 174 search results


지난 7일 기간대비 상승한 Top5 연관 키워드는 Education Alleged Sicherheitsnews Zusammenfassung Database 입니다.
기관 및 기업 Coinbase 도 새롭게 확인됩니다.
기타 event PreDay Charlotte Mr 신규 키워드도 확인됩니다.

 * 최근 뉴스기사 Top3:
    ㆍ 2025/04/28 Top Tier Target | What It Takes to Defend a Cybersecurity Company from Today’s Adversaries
    ㆍ 2025/04/28 28th April – Threat Intelligence Report
    ㆍ 2025/04/28 WooCommerce Users Targeted by Fake Patch Phishing Campaign Deploying Site Backdoors

Trend graph by period

Total number of trend targets


Related keyword cloud
Top 100
# Trend Count Comparison
1Malware 15 ▼ -36 (-240%)
2Ransomware 13 ▼ -10 (-77%)
3Education 13 ▲ 2 (15%)
4United States 11 ▼ -9 (-82%)
5Report 11 ▼ -17 (-155%)
6Victim 10 ▼ -6 (-60%)
7Vulnerability 10 ▼ -3 (-30%)
8Update 9 ▼ -13 (-144%)
9Alert 9 ▼ -8 (-89%)
10Alleged 9 ▲ 1 (11%)
11AI 8 ▼ -2 (-25%)
12Microsoft 7 ▼ -7 (-100%)
13South Korea 7 ▼ -3 (-43%)
14Software 7 ▼ -10 (-143%)
15RCE 6 ▼ -6 (-100%)
16intelligence 6 ▼ -6 (-100%)
17attack 5 ▼ -23 (-460%)
18Sicherheitsnews 5 ▲ 1 (20%)
19target 5 ▼ -17 (-340%)
20Zusammenfassung 5 ▲ 1 (20%)
21China 5 ▼ -5 (-100%)
22Kaspersky 5 ▼ -5 (-100%)
23Database 5 ▲ 5 (100%)
24DarkWeb 4 ▼ -1 (-25%)
25last 4 - 0 (0%)
26Data 4 ▼ -1 (-25%)
27taegliche 4 - 0 (0%)
28Phishing 4 ▼ -6 (-150%)
29Facebook 4 ▲ 4 (100%)
30Campaign 4 ▼ -12 (-300%)
31Exploit 4 ▼ -12 (-300%)
32hacking 3 ▼ -8 (-267%)
33Qilin 3 ▲ 2 (67%)
34Leak 3 ▲ 2 (67%)
35Agentic 3 ▲ 3 (100%)
36Warum 3 ▲ 3 (100%)
37RSAC 3 ▼ -1 (-33%)
38KISA 3 ▲ 2 (67%)
39conference 3 - 0 (0%)
40Sale 3 ▼ -1 (-33%)
41Instagram 3 ▲ 2 (67%)
42group 3 ▼ -1 (-33%)
43ZeroDay 3 ▼ -1 (-33%)
44April 3 ▼ -1 (-33%)
45Email 3 ▼ -5 (-167%)
46한국 3 ▲ 2 (67%)
47threat 3 ▼ -4 (-133%)
48DDoS 3 ▼ -6 (-200%)
49진행 3 ▲ 2 (67%)
50MWNEWS 3 ▼ -10 (-333%)
51risk 2 ▲ 1 (50%)
52Germany 2 ▼ -2 (-100%)
53PoC 2 ▲ 1 (50%)
54제품 2 ▲ 1 (50%)
55Craft 2 ▲ 2 (100%)
56Access 2 ▼ -3 (-150%)
57event 2 ▲ new
58CVSS 2 - 0 (0%)
59breach 2 ▼ -1 (-50%)
60PreDay 2 ▲ new
61amp 2 - 0 (0%)
62Falcon 2 ▲ 1 (50%)
63Version 2 - 0 (0%)
64Unfiltered 2 ▲ 1 (50%)
65Der 2 - 0 (0%)
66World 2 ▲ 2 (100%)
67정보 2 ▲ 1 (50%)
68info 2 ▲ 1 (50%)
69Charlotte 2 ▲ new
70response 2 ▲ 1 (50%)
71own 2 ▲ 1 (50%)
72Stay 2 ▲ 1 (50%)
73Stealer 2 ▼ -3 (-150%)
74Europe 2 ▼ -1 (-50%)
75So 2 ▲ 1 (50%)
76Coinbase 2 ▲ new
77WordPress 2 ▲ 1 (50%)
78NextGen 2 ▲ 2 (100%)
79CrowdStrike 2 - 0 (0%)
80CVE 2 ▼ -1 (-50%)
81Looks 2 ▲ 2 (100%)
82United Kingdom 2 ▼ -1 (-50%)
83Mr 2 ▲ new
84Data Center 2 ▲ 1 (50%)
85Password 2 ▼ -1 (-50%)
86UK 2 ▲ 1 (50%)
87일본 2 ▲ 1 (50%)
88Japan 2 ▼ -3 (-150%)
89Operation 2 ▼ -8 (-400%)
90Fog 2 ▲ 1 (50%)
91From 2 - 0 (0%)
92경영 2 ▲ 2 (100%)
93Register 2 - 0 (0%)
94von 2 ▼ -2 (-100%)
95May 2 ▲ 1 (50%)
96other 2 ▲ 2 (100%)
97Samsung 2 ▲ 2 (100%)
98WhatsApp 2 - 0 (0%)
99North Korea 2 ▼ -6 (-300%)
100CMS 2 ▲ 2 (100%)
Special keyword group
Top 5
Malware Type
Malware Type

This is the type of malware that is becoming an issue.

Keyword Average Label
Ransomware
13 (54.2%)
Botnet
1 (4.2%)
Clop
1 (4.2%)
Lobshot
1 (4.2%)
RATel
1 (4.2%)
Attacker & Actors
Attacker & Actors

The status of the attacker or attack group being issued.

Keyword Average Label
LOTUS PANDA
1 (50%)
Storm-1977
1 (50%)
Attack technique
Technique

This is an attack technique that is becoming an issue.

Keyword Average Label
RCE
6 (20%)
Phishing
4 (13.3%)
Campaign
4 (13.3%)
Exploit
4 (13.3%)
hacking
3 (10%)
Country & Company
Country & Company

This is a country or company that is an issue.

Keyword Average Label
United States
11 (12.4%)
Microsoft
7 (7.9%)
South Korea
7 (7.9%)
China
5 (5.6%)
Kaspersky
5 (5.6%)
Malware Type
Top 5

Detailed trend analysis by malware type.

Threat info
Last 5

SNS

(Total : 79)
  Total keyword

Ransomware Report Victim Education Intelligence target United States attack DDoS conference Microsoft RCE Update DarkWeb Stealer Malware Coinbase PoC Vulnerability Operation Kaspersky hacking Password Email China North Korea Open Directory Instagram Cisco ...The Shadow Brokers Opendir CrowdStrike Phishing ZeroDay Attacker Exploit APT ESET Campaign Botnet MDR Windows IoT CVE Police Binance Europe Linux Italy CISA Storm-1977 Advertising Payment WORMHOLE FBI Watchdog WordPress France plugin Cryptocurrency Miner

1Kimberly @StopMalvertisin
The DFIR Report | Navigating Through The Fog https://t.co/Oey9PzfTWe		2025.04.28
2Kaspersky @kaspersky
Next-Gen SOC: Intelligence in Action ???? Threats evolve fast—shouldn’t your SOC? Join our live webinar (May 15, 10 AM KST) to learn how: ✅ AI + Threat Intelligence slashes detection time ✅ Proactive strategies beat reactive firefighting ✅ Collective defense amplifies security https://t.co/NWNb2JfW		2025.04.28
3Kimberly @StopMalvertisin
The Register | Samsung admits Galaxy devices can leak passwords through clipboard wormhole https://t.co/7H7Zvu9NsO		2025.04.28
4CrowdStrike @CrowdStrike
Hello from San Francisco! ???? Follow CrowdStrike here and on Instagram for up-to-the-minute photos, videos, and announcements from #RSAC2025: https://t.co/V6XTCuggNp And if you'll be at RSA, stop by our booth and visit the Falcon Lounge at 4th & Howard on Tuesday and Wednesday! https://t.co/O3		2025.04.28
5Kaspersky @kaspersky
Safety isn’t just a shield—it’s peace of mind. ???? We’re redefining what it means to feel secure online. ???? Watch our manifesto! #DigitalSafety #Kaspersky #CyberSecurity https://t.co/7e6xKQfTsb		2025.04.28

News

(Total : 93)
  Total keyword

Malware United States Vulnerability Education Software South Korea Update China Microsoft Facebook Report Campaign 한국 Kaspersky RCE intelligence Phishing Exploit KISA Victim Russia Attacker Ransomware DarkWeb Instagram Germany WhatsApp ZeroDay CVSS target attack Data Center United Kingdom UK Japan 일본 Leidos Saudi Arabia Europe Mexico Banking Email Criminal Canada ...Twitter German Google 구글 Docker S2W 카스퍼스키 Advertising Browser Chrome Check Point RATel Lobshot Cryptocurrency Ucraina Clop Cobalt Strike EDR North Korea Black Basta Cobra Carbon System Telegram Social Engineering Palo Alto Networks APT15 APT41 Maze CyberArk LOTUS PANDA CrowdStrike ChatGPT Backdoor WordPress Android 세미나 YouTube Australia CVE VBS Windows VBScript Government iPhone Apple India 윈도우 Kali NetWireRC njRAT 해킹 hacking Hong Kong 업데이트 US Forensics ShadowPad

1Top Tier Target | What It Takes to Defend a Cybersecurity Company from Today’s Adversaries - Malware.News2025.04.28
2한드림넷, ‘재팬IT위크’에 일본시장 특화 보안스위치 신제품 출시 - 데일리시큐2025.04.28
3TDK Adds Risk Scenario to Downbeat Outlook Due to Tariff Threat - Bloomberg Technology2025.04.28
4기원테크, 제네바 ITU-T 국제무대서 '세계 이메일 보안의 새 장' 열어…글로벌 표준화 주도권 확보 - 데일리시큐2025.04.28
5쿠도커뮤니케이션, ‘2025 Netskope Partner’s Day’ 성황리 개최 - 데일리시큐2025.04.28

Additional information

Level Description
warning File has been identified by 21 AntiVirus engines on VirusTotal as malicious
watch Communicates with host for which no DNS query was performed
watch Network communications indicative of a potential document or script payload download was initiated by the process powershell.exe
notice Allocates read-write-execute memory (usually to unpack itself)
notice Checks adapter addresses which can be used to detect virtual network interfaces
notice HTTP traffic contains suspicious features which may be indicative of malware related traffic
notice One or more potentially interesting buffers were extracted
notice Performs some HTTP requests
notice Poweshell is sending data to a remote host
notice URL downloaded by powershell script
info Checks amount of memory in system
info Command line console output was observed
info Queries for the computername
info Uses Windows APIs to generate a cryptographic key
Network ET HUNTING SUSPICIOUS Dotted Quad Host MZ Response
Network ET INFO Executable Download from dotted-quad Host
Network ET INFO Executable Retrieved With Minimal HTTP Headers - Potential Second Stage Download
Network ET MALWARE Terse alphanumeric executable downloader high likelihood of being hostile
Network ET POLICY PE EXE or DLL Windows file download HTTP
No Category URL CC ASN Co Date
1malicioushttps://booking.secure-partener.com/US USCLOUDFLARENET2025.04.28
2malicioushttps://booking.secure-partener.com/sign-inUS USCLOUDFLARENET2025.04.28
3malwarehttp://185.39.17.70/zgrnf/ckuh.exeRU RUJoint Stock Company Tagnet2025.04.28
4malicioushttps://secure-partener.com/US USCLOUDFLARENET2025.04.28
5malwarehttp://88.214.48.26/tpnl98/ret.exeRU RU2025.04.28
View only the last 5
No URL CC ASN Co Reporter Date
1http://115.55.51.83:60918/i
32-bit elf mips Mozi 		CN CNCHINA UNICOM China169 Backbonegeenensp2025.04.28
2http://59.183.120.21:60411/i
32-bit elf mips Mozi 		IN IN...geenensp2025.04.28
3http://77.247.88.105:37067/bin.sh
32-bit arm elf Mozi 		AL ALTele.Co.Albania SHPKgeenensp2025.04.28
4http://84.240.6.31:58355/bin.sh
32-bit elf mips Mozi 		LT LT...geenensp2025.04.28
5http://60.23.239.105:37885/i
32-bit elf mips Mozi 		CN CNCHINA UNICOM China169 Backbonegeenensp2025.04.28
View only the last 5
Beta Service, If you select keyword, you can check detailed information.