Summary: 2025/04/29 00:13
First reported date: 2009/08/05
Inquiry period : 2025/03/30 00:13 ~ 2025/04/29 00:13 (1 months), 102 search results
전 기간대비 동일한 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 Google Email Cryptocurrency Ransomware threat 입니다.
악성코드 유형 Black Basta Clop 도 새롭게 확인됩니다.
공격기술 RCE 도 새롭게 확인됩니다.
기타 MicrosoftEdge Anonymisierendes enterprise Version OpenAI 등 신규 키워드도 확인됩니다.
* 최근 뉴스기사 Top3:
ㆍ 2025/04/28 Embracing the Future of Work with Innovations in Prisma SASE
ㆍ 2025/04/28 28th April – Threat Intelligence Report
ㆍ 2025/04/26 Only Google Can Run Chrome, Company’s Browser Chief Tells Judge
Trend graph by period
Related keyword cloud
Top 100| # | Trend | Count | Comparison |
|---|---|---|---|
| 1 | Browser | 102 | - 0 (0%) |
| 2 | Malware | 48 | ▼ -10 (-21%) |
| 3 | 32 | ▲ 1 (3%) | |
| 4 | attack | 29 | ▼ -6 (-21%) |
| 5 | target | 27 | ▼ -1 (-4%) |
| 6 | Chrome | 27 | - 0 (0%) |
| 7 | 26 | ▲ 5 (19%) | |
| 8 | Report | 26 | ▼ -7 (-27%) |
| 9 | Update | 25 | ▼ -20 (-80%) |
| 10 | Exploit | 24 | ▼ -1 (-4%) |
| 11 | Campaign | 24 | ▼ -10 (-42%) |
| 12 | Phishing | 23 | ▼ -2 (-9%) |
| 13 | Microsoft | 21 | ▼ -2 (-10%) |
| 14 | Advertising | 19 | ▼ -6 (-32%) |
| 15 | Software | 19 | ▼ -3 (-16%) |
| 16 | Windows | 15 | ▼ -16 (-107%) |
| 17 | Victim | 14 | ▼ -11 (-79%) |
| 18 | United States | 14 | ▼ -4 (-29%) |
| 19 | Criminal | 14 | ▼ -6 (-43%) |
| 20 | RCE | 12 | ▲ new |
| 21 | Stealer | 12 | ▼ -9 (-75%) |
| 22 | Vulnerability | 11 | ▼ -9 (-82%) |
| 23 | Password | 10 | - 0 (0%) |
| 24 | intelligence | 10 | - 0 (0%) |
| 25 | Cryptocurrency | 10 | ▲ 2 (20%) |
| 26 | MFA | 10 | - 0 (0%) |
| 27 | Russia | 9 | ▼ -2 (-22%) |
| 28 | Kaspersky | 9 | ▼ -4 (-44%) |
| 29 | Operation | 9 | ▼ -6 (-67%) |
| 30 | IoC | 9 | ▼ -5 (-56%) |
| 31 | Ransomware | 9 | ▲ 3 (33%) |
| 32 | threat | 8 | ▲ 2 (25%) |
| 33 | ZeroDay | 8 | ▼ -2 (-25%) |
| 34 | Government | 8 | ▼ -4 (-50%) |
| 35 | powershell | 7 | ▼ -3 (-43%) |
| 36 | ChatGPT | 7 | ▲ 1 (14%) |
| 37 | Social Engineering | 7 | ▲ 1 (14%) |
| 38 | 7 | ▲ 4 (57%) | |
| 39 | Distribution | 7 | ▼ -3 (-43%) |
| 40 | Education | 7 | ▼ -2 (-29%) |
| 41 | c&c | 7 | ▼ -4 (-57%) |
| 42 | GitHub | 6 | - 0 (0%) |
| 43 | Java | 6 | ▼ -4 (-67%) |
| 44 | Trojan | 6 | ▼ -6 (-100%) |
| 45 | payment | 6 | ▲ 1 (17%) |
| 46 | googlechrome | 5 | ▲ 4 (80%) |
| 47 | GameoverP2P | 5 | ▼ -2 (-40%) |
| 48 | Linux | 5 | - 0 (0%) |
| 49 | protection | 5 | ▲ 4 (80%) |
| 50 | Edge | 5 | ▲ 1 (20%) |
| 51 | Android | 5 | ▼ -6 (-120%) |
| 52 | Apple | 5 | ▼ -2 (-40%) |
| 53 | RATel | 5 | ▲ 2 (40%) |
| 54 | NortonLifeLock | 5 | ▲ 3 (60%) |
| 55 | Microsoft Edge | 5 | ▼ -5 (-100%) |
| 56 | IPS | 4 | ▲ 3 (75%) |
| 57 | ThreatProtection | 4 | ▲ 2 (50%) |
| 58 | China | 4 | ▼ -3 (-75%) |
| 59 | Lumma | 4 | ▼ -2 (-50%) |
| 60 | Endpoint | 4 | ▲ 3 (75%) |
| 61 | Symantec | 4 | ▲ 3 (75%) |
| 62 | account | 4 | ▲ 3 (75%) |
| 63 | Tick | 4 | ▲ 3 (75%) |
| 64 | Firefox | 4 | ▼ -13 (-325%) |
| 65 | Takedown | 4 | - 0 (0%) |
| 66 | malicious | 4 | - 0 (0%) |
| 67 | Remote Code Execution | 4 | ▼ -18 (-450%) |
| 68 | Vawtrak | 4 | ▲ 1 (25%) |
| 69 | hijack | 4 | ▼ -1 (-25%) |
| 70 | access | 3 | ▲ 1 (33%) |
| 71 | Safari | 3 | - 0 (0%) |
| 72 | Web | 3 | ▼ -2 (-67%) |
| 73 | Telegram | 3 | ▼ -1 (-33%) |
| 74 | VirusTotal | 3 | ▼ -1 (-33%) |
| 75 | Europe | 3 | ▼ -1 (-33%) |
| 76 | Ucraina | 3 | ▲ 2 (67%) |
| 77 | YouTube | 3 | ▼ -1 (-33%) |
| 78 | MicrosoftEdge | 3 | ▲ new |
| 79 | Anonymisierendes | 3 | ▲ new |
| 80 | Black Basta | 3 | ▲ new |
| 81 | Banking | 3 | ▼ -4 (-133%) |
| 82 | Clop | 3 | ▲ new |
| 83 | dlp | 3 | ▲ 2 (67%) |
| 84 | VBScript | 3 | - 0 (0%) |
| 85 | VPN | 3 | ▼ -3 (-100%) |
| 86 | MacOS | 3 | ▼ -1 (-33%) |
| 87 | 3 | ▼ -6 (-200%) | |
| 88 | sophisticated | 3 | ▲ 2 (67%) |
| 89 | mozilla | 3 | ▼ -2 (-67%) |
| 90 | enterprise | 3 | ▲ new |
| 91 | DarkWeb | 3 | ▼ -2 (-67%) |
| 92 | NetWireRC | 2 | ▼ -7 (-350%) |
| 93 | Booking | 2 | ▲ 1 (50%) |
| 94 | Version | 2 | ▲ new |
| 95 | OpenAI | 2 | ▲ new |
| 96 | Figure | 2 | ▲ new |
| 97 | Smishing | 2 | ▲ 1 (50%) |
| 98 | privacy | 2 | ▲ new |
| 99 | history | 2 | ▲ new |
| 100 | risk | 2 | ▲ new |
Special keyword group
Top 5
Malware Type
This is the type of malware that is becoming an issue.
| Keyword | Average | Label |
|---|---|---|
| Ransomware |
|
9 (19.6%) |
| Trojan |
|
6 (13%) |
| GameoverP2P |
|
5 (10.9%) |
| RATel |
|
5 (10.9%) |
| Lumma |
|
4 (8.7%) |
Attacker & Actors
The status of the attacker or attack group being issued.
| Keyword | Average | Label |
|---|---|---|
| Tick |
|
4 (57.1%) |
| LOTUS PANDA |
|
2 (28.6%) |
| Lazarus |
|
1 (14.3%) |
Country & Company
This is a country or company that is an issue.
| Keyword | Average | Label |
|---|---|---|
|
|
32 (24.8%) | |
| Microsoft |
|
21 (16.3%) |
| United States |
|
14 (10.9%) |
| Russia |
|
9 (7%) |
| Kaspersky |
|
9 (7%) |
Threat info
Last 5SNS
(Total : 38)Browser Chrome Google target Email Malware attack Stealer Phishing Symantec Campaign Exploit Microsoft MFA ZeroDay Password Takedown North Korea Safari powershell Apple Update Vulnerability Windows Software Tor MacOS hijack DPRK Attacker Varonis dlp Zeus Proofpoint Vawtrak Lazarus Operation YouTube Lumma Cryptocurrency Trellix Advertising Kaspersky ...
News
(Total : 64)Browser Malware Google Report Update attack Attacker Exploit Campaign target Phishing Email Chrome Advertising Software Microsoft Criminal United States Victim Windows RCE intelligence Vulnerability Ransomware Cryptocurrency Operation Kaspersky IoC Russia Education Government Stealer Distribution ChatGPT c&c Social Engineering Password MFA WhatsApp Trojan payment Java RATel ZeroDay Linux GameoverP2P GitHub powershell Android Microsoft Edge Remote Code Execution China Tick VBScript Ucraina Black Basta Apple VPN Firefox VirusTotal Vawtrak Telegram Europe Clop Banking Twitter Lumma DarkWeb IcedID LockBit Gmail SMB Akira Copy-Paste AhnLab hijack LinkedIn LOTUS PANDA OpenAI Smishing Malvertising Takedown Booking United Kingdom ...
| No | Title | Date |
|---|---|---|
| 1 | Embracing the Future of Work with Innovations in Prisma SASE - Malware.News | 2025.04.28 |
| 2 | 28th April – Threat Intelligence Report - Malware.News | 2025.04.28 |
| 3 | Only Google Can Run Chrome, Company’s Browser Chief Tells Judge - Bloomberg Technology | 2025.04.26 |
| 4 | Yahoo Is Ready to Buy Chrome Browser If Google Is Forced to Sell - Bloomberg Technology | 2025.04.25 |
| 5 | Beyond the Inbox: ThreatLabz 2025 Phishing Report Reveals How Phishing Is Evolving in the Age of GenAI - Malware.News | 2025.04.25 |
Additional information
| No | Title | Date |
|---|---|---|
| 1 | Employee monitoring app exposes users, leaks 21+ million screenshots - Malware.News | 2025.04.28 |
| 2 | Introducing XSIAM 3.0 - Malware.News | 2025.04.28 |
| 3 | Deploy Bravely with Prisma AIRS - Malware.News | 2025.04.28 |
| 4 | 2025 Cyber Resilience Research Discovers Speed of AI Advancing Emerging Attack Types - Malware.News | 2025.04.28 |
| 5 | Intel CEO Targets Change in Corporate Culture to Shape Up - Bloomberg Technology | 2025.04.28 |
| View only the last 5 | ||
| No | Title | Date |
|---|---|---|
| 1 | Embracing the Future of Work with Innovations in Prisma SASE - Malware.News | 2025.04.28 |
| 2 | Embracing the Future of Work with Innovations in Prisma SASE - Malware.News | 2025.04.28 |
| 3 | Embracing the Future of Work with Innovations in Prisma SASE - Malware.News | 2025.04.28 |
| 4 | 28th April – Threat Intelligence Report - Malware.News | 2025.04.28 |
| 5 | 28th April – Threat Intelligence Report - Malware.News | 2025.04.28 |
| View only the last 5 | ||
| Level | Description |
|---|---|
| warning | File has been identified by 27 AntiVirus engines on VirusTotal as malicious |
| watch | Drops a binary and executes it |
| watch | Found URLs in memory pointing to an IP address rather than a domain (potentially indicative of Command & Control traffic) |
| watch | One or more non-whitelisted processes were created |
| watch | Requests access to read memory contents of lsass.exe potentially indicative of credential dumping |
| watch | Resumed a suspended thread in a remote process potentially indicative of process injection |
| notice | A process created a hidden window |
| notice | Allocates read-write-execute memory (usually to unpack itself) |
| notice | An application raised an exception which may be indicative of an exploit crash |
| notice | Creates (office) documents on the filesystem |
| notice | Creates a shortcut to an executable file |
| notice | Creates a suspicious process |
| notice | Creates executable files on the filesystem |
| notice | Drops an executable to the user AppData folder |
| notice | One or more potentially interesting buffers were extracted |
| notice | Potentially malicious URLs were found in the process memory dump |
| notice | Queries the disk size which could be used to detect virtual machine with small fixed size or dynamic allocation |
| notice | Starts servers listening |
| notice | Steals private information from local Internet browsers |
| notice | Yara rule detected in process memory |
| info | Checks amount of memory in system |
| info | Checks if process is being debugged by a debugger |
| info | One or more processes crashed |
| info | Tries to locate where the browsers are installed |