popup

Cyber Threat Trends

  1. Day Week

Gemelli flickerflypro flickerfly

Summary: 2025/04/28 23:51

First reported date: 2024/06/18
Inquiry period : 2025/03/29 23:51 ~ 2025/04/28 23:51 (1 months), 39 search results

전 기간대비 13% 높은 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 ClickFix Malware Social Engineering Proofpoint Report 입니다.
악성코드 유형 Ransomware QakBot QuasarRAT SectopRAT 도 새롭게 확인됩니다.
공격자 Lazarus Kimsuky MuddyWater 도 새롭게 확인됩니다.
공격기술 clearfake Backdoor 도 새롭게 확인됩니다.
기관 및 기업 North Korea Kaspersky Iran Russia dprk Binance 도 새롭게 확인됩니다.
기타 North Korea StateSponsored Contagious Interlock 등 신규 키워드도 확인됩니다.

 * 최근 뉴스기사 Top3:
    ㆍ 2025/04/17 State-Sponsored Hackers Weaponize ClickFix Tactic in Targeted Malware Campaigns
    ㆍ 2025/04/17 Interlock ransomware evolves tactics with ClickFix, infostealers
    ㆍ 2025/04/07 ⚡ Weekly Recap: VPN Exploits, Oracle's Silent Breach, ClickFix Comeback and More

Trend graph by period


Related keyword cloud
Top 100
# Trend Count Comparison
1ClickFix 39 ▲ 5 (13%)
2North Korea 17 ▲ new
3Malware 16 ▲ 5 (31%)
4Campaign 10 ▼ -2 (-20%)
5Lazarus 10 ▲ new
6Social Engineering 9 ▲ 6 (67%)
7North 8 ▲ new
8Proofpoint 8 ▲ 7 (88%)
9Kaspersky 7 ▲ new
10Iran 7 ▲ new
11Russia 7 ▲ new
12Report 6 ▲ 5 (83%)
13Korea 6 ▲ new
14attack 6 ▼ -1 (-17%)
15clearfake 5 ▲ new
16StateSponsored 5 ▲ new
17target 5 ▲ 3 (60%)
18Contagious 5 ▲ new
19hacking 5 ▲ 4 (80%)
20Interlock 4 ▲ new
21Ransomware 4 ▲ new
22tactic 4 ▲ new
23ClickFake 4 ▲ new
24Interview 4 ▲ new
25Phishing 4 ▼ -2 (-50%)
26Backdoor 4 ▲ new
27Windows 4 ▲ 3 (75%)
28Group 3 ▲ new
29cti 3 ▲ new
30Criminal 3 ▲ 2 (67%)
31Update 3 ▼ -1 (-33%)
32dprk 3 ▲ new
33socialengineering 3 ▲ new
34threat 3 ▲ 1 (33%)
35powershell 3 - 0 (0%)
36Reading 3 ▲ new
37Dark 3 ▲ new
38Distribution 2 ▼ -2 (-100%)
39공격 2 ▲ new
40Try 2 ▲ new
41IoC 2 ▲ 1 (50%)
42NetWireRC 2 - 0 (0%)
43MacOS 2 ▲ new
44TA427 2 ▲ new
45Victim 2 ▲ 1 (50%)
46World 2 ▲ new
47Cryptocurrency 2 ▲ new
48contagiousinterview 2 ▲ new
49captcha 2 ▲ new
50golangghost 2 ▲ new
51QakBot 2 ▲ new
52Exploit 2 ▲ 1 (50%)
53March 2 ▲ new
54gang 2 ▲ new
55Password 2 ▲ 1 (50%)
56threatinsight 2 ▲ new
57From 2 ▲ new
58httpstco 2 ▲ new
59social 2 ▲ 1 (50%)
60engineering 2 ▲ 1 (50%)
61NortonLifeLock 1 ▲ new
62Copy 1 ▲ new
63cyberthreat 1 ▲ new
64Hackers 1 - 0 (0%)
65ThreatProtection 1 ▲ new
66Weaponize 1 ▲ new
67Kimsuky 1 ▲ new
68beavertail 1 ▲ new
69MuddyWater 1 ▲ new
70invisibleferret 1 ▲ new
71think 1 ▲ new
72ottercookie 1 ▲ new
73famouschollima 1 ▲ new
74United States 1 ▲ new
75Advertising 1 ▼ -2 (-200%)
76QuasarRAT 1 ▲ new
77State 1 ▲ new
78PC 1 ▲ new
79initial 1 ▲ new
80US 1 ▲ new
81Get 1 ▲ new
82lesserknown 1 ▲ new
83MWNEWS 1 ▼ -1 (-100%)
84malwareanalysis 1 ▲ new
85Stealer 1 ▼ -9 (-900%)
86broker 1 ▲ new
87access 1 - 0 (0%)
88Binance 1 ▲ new
89popular 1 ▲ new
90SectopRAT 1 ▲ new
91NodejsPowered 1 ▲ new
92Alert 1 ▲ new
93Microsoft 1 ▼ -5 (-500%)
94fake 1 ▲ new
95Paste 1 ▲ new
96share 1 ▲ new
97show 1 ▲ new
98Cloudflare 1 ▼ -2 (-200%)
99Recap 1 ▲ new
100page 1 ▲ new
Special keyword group
Top 5
Malware Type
Malware Type

This is the type of malware that is becoming an issue.

Keyword Average Label
Ransomware
4 (33.3%)
NetWireRC
2 (16.7%)
QakBot
2 (16.7%)
QuasarRAT
1 (8.3%)
SectopRAT
1 (8.3%)
Attacker & Actors
Attacker & Actors

The status of the attacker or attack group being issued.

Keyword Average Label
Lazarus
10 (76.9%)
Kimsuky
1 (7.7%)
MuddyWater
1 (7.7%)
라자루스
1 (7.7%)
Attack technique
Technique

This is an attack technique that is becoming an issue.

Keyword Average Label
ClickFix
39 (48.1%)
Campaign
10 (12.3%)
Social Engineering
9 (11.1%)
clearfake
5 (6.2%)
hacking
5 (6.2%)
Country & Company
Country & Company

This is a country or company that is an issue.

Keyword Average Label
North Korea
17 (30.9%)
Proofpoint
8 (14.5%)
Kaspersky
7 (12.7%)
Iran
7 (12.7%)
Russia
7 (12.7%)
Threat info
Last 5

SNS

(Total : 31)
  Total keyword

ClickFix North Korea Malware Proofpoint Kaspersky Campaign attack Iran Russia Lazarus Social Engineering Report clearfake target powershell Ransomware Criminal dprk IoC Phishing Attacker hacking QakBot Microsoft Binance SectopRAT NetWireRC QuasarRAT LinkedIn Exploit APT Password Update Browser IOCs ...

No Title Date
1Virus Bulletin @virusbtn
Proofpoint researchers discovered state-sponsored actors from North Korea, Iran and Russia experimenting in multiple campaigns with the ClickFix social engineering technique as a stage in their infection chains. https://t.co/3ZswvWTX7u https://t.co/8OWQnTUthJ		2025.04.24
2lazarusholic @lazarusholic
"Contagious Interview (DPRK) Launches a New Campaign Creating Three Front Companies to Deliver a Trio of Malware" published by @silentpush. #BeaverTail, #ContagiousInterview, #InvisibleFerret, #OtterCookie, #FamousChollima, #ClickFix, #DPRK, #CTI https://t.co/uUEkpODoUq		2025.04.24
3Threat Intelligence @threatintel
#ThreatProtection Interlock ransomware group uses ClickFix social engineering, fake CAPTCHAs & PowerShell to deploy malware payloads. Read more about Symantec's protection: https://t.co/JGooj4A0XI #CyberThreat #Ransomware		2025.04.22
4Proofpoint @proofpoint
Proofpoint @threatinsight is warning PC users to think before they act. A #socialengineering tactic called #ClickFix is being used by nation-state hackers in Russia, Iran and North Korea. @Forbes has what you need to look out for—and what you need to do. https://t.co/UcMKLKODtk		2025.04.22
5Proofpoint @proofpoint
The #ClickFix attack technique, primarily used by cyber criminals, has gotten so popular that even state-sponsored threat actors are using it. @techradar featured Proofpoint @threatinsight's research on the activity. https://t.co/Lf4wr1TmZx		2025.04.21

News

(Total : 8)
  Total keyword

ClickFix Malware Lazarus Campaign Social Engineering North Korea Backdoor Windows hacking Update Cryptocurrency Phishing Attacker Distribution MuddyWater Kimsuky Kaspersky 악성코드 Iran Downloader Software Russia target RAT ClearFake Victim Ransomware Stealer iCloud Report Java VPN MacOS France 라자루스 Oracle Exploit Password Twitter plugin Supply chain NetWireRC c&c South Korea schtasks AhnLab BLINDINGCAN GitHub

No Title Date
1State-Sponsored Hackers Weaponize ClickFix Tactic in Targeted Malware Campaigns - The Hacker News2025.04.17
2Interlock ransomware evolves tactics with ClickFix, infostealers - Malware.News2025.04.17
3Around the World in 90 Days: State-Sponsored Actors Try ClickFix - Proofpoint / Saher Naumaan and Mark Kelly and Greg Lesnewich and Josh Miller / malpedia2025.04.17
4⚡ Weekly Recap: VPN Exploits, Oracle's Silent Breach, ClickFix Comeback and More - The Hacker News2025.04.07
5북한 해커 조직, 악성 npm 패키지 11개 추가 배포… 한국 개발자 공격 - 시큐리티팩트2025.04.07

Additional information

No data
No data
No data
No URL CC ASN Co Reporter Date
1http://highspring.247supportsolutions.com:8080/converge.exe
ClickFix exe FakeCaptcha 		US USAMAZON-02DaveLikesMalwre2025.04.28
2https://stealer.cy/static/packaged_py.zip
ClickFix FakeCaptcha 		RU RUDdos-guard LtdDaveLikesMalwre2025.04.28
3https://stealer.cy/psc?uid=12%5E
ClickFix FakeCaptcha 		RU RUDdos-guard LtdDaveLikesMalwre2025.04.28
4https://stealer.cy/py-captcha?uid=12
ClickFix FakeCaptcha 		RU RUDdos-guard LtdDaveLikesMalwre2025.04.28
5http://185.39.17.70/zgrnf/njg.exe
booking ClickFix FakeCaptcha 		RU RUJoint Stock Company TagnetJAMESWT_WT2025.04.28
View only the last 5
Beta Service, If you select keyword, you can check detailed information.