popup

Cyber Threat Trends

  1. Day Week

Gemelli flickerflypro flickerfly

Summary: 2025/05/03 19:36

First reported date: 2001/06/27
Inquiry period : 2025/04/03 19:36 ~ 2025/05/03 19:36 (1 months), 15 search results

전 기간대비 -7% 낮은 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 China group Government apt Report 입니다.
악성코드 유형 ROMCOMRAT ROMCOM RAT RAT NetWireRC 도 새롭게 확인됩니다.
공격자 UNC5221 도 새롭게 확인됩니다.
공격기술 Backdoor RCE 도 새롭게 확인됩니다.
기관 및 기업 Mandiant Europe Recorded Future 도 새롭게 확인됩니다.
기타 Billbug multiple Ivanti Chinabacked geopolitical 등 신규 키워드도 확인됩니다.

 * 최근 뉴스기사 Top3:
    ㆍ 2025/04/16 Chinese espionage group leans on open-source tools to mask intrusions
    ㆍ 2025/04/06 Target espionage activity UAC-0226 in relation to the centers of innovation, state and law enforcement services using the GIFTEDCROOK (CERT-UA#14303)
    ㆍ 2025/04/04 China-backed espionage group hits Ivanti customers again

Trend graph by period


Related keyword cloud
Top 100
# Trend Count Comparison
1espionage 15 ▼ -1 (-7%)
2China 6 ▲ 1 (17%)
3group 6 ▲ 4 (67%)
4Campaign 5 ▼ -2 (-40%)
5target 4 ▼ -1 (-25%)
6Government 4 ▲ 2 (50%)
7attack 3 ▼ -2 (-67%)
8apt 3 ▲ 2 (67%)
9Kaspersky 3 - 0 (0%)
10Russia 3 - 0 (0%)
11Report 2 ▲ 1 (50%)
12Exploit 2 - 0 (0%)
13Backdoor 2 ▲ new
14Billbug 2 ▲ new
15multiple 2 ▲ new
16Russianspeaking 2 ▲ 1 (50%)
17ROMCOMRAT 2 ▲ new
18Ivanti 2 ▲ new
19Chinabacked 2 ▲ new
20Stealer 1 - 0 (0%)
21ROMCOM RAT 1 ▲ new
22geopolitical 1 ▲ new
23Nebulous 1 ▲ new
24Operation 1 ▼ -1 (-100%)
25highlevel 1 ▲ new
26UTGQ 1 ▲ new
27Chrome 1 ▼ -1 (-100%)
28AI 1 - 0 (0%)
29Chinas 1 ▲ new
30Congress 1 ▲ new
31Recent 1 - 0 (0%)
32DeepSeek 1 ▲ new
33profound 1 ▲ new
34RAT 1 ▲ new
35Chinalinked 1 - 0 (0%)
36NetWireRC 1 ▲ new
37Big 1 ▲ new
38Alert 1 ▲ new
39Four 1 ▲ new
40Sysdig 1 ▲ new
41cybercrime 1 ▲ new
42Record 1 ▲ new
43Mandiant 1 ▲ new
44UNC5221 1 ▲ new
45CyberScoop 1 - 0 (0%)
46UAC 1 ▼ -1 (-100%)
47activity 1 ▲ new
48relation 1 ▲ new
49Phishing 1 - 0 (0%)
50rdp 1 ▲ new
51GTIG 1 ▲ new
52novel 1 ▲ new
53Europe 1 ▲ new
54Recorded 1 ▲ new
55posturing 1 ▲ new
56Future 1 ▲ new
57Dutch 1 ▲ new
58Recorded Future 1 ▲ new
59NVISO 1 ▲ new
60BRICKSTORM 1 ▲ new
61httpstcovaMCkOOwWe 1 ▲ new
62RCE 1 ▲ new
63opensource 1 ▲ new
64Chinese 1 ▼ -1 (-100%)
65cyberespionage 1 ▲ new
66tradetensions 1 ▲ new
67strategic 1 ▲ new
68Malware 1 - 0 (0%)
Special keyword group
Top 5
Malware Type
Malware Type

This is the type of malware that is becoming an issue.

Keyword Average Label
ROMCOMRAT
2 (40%)
ROMCOM RAT
1 (20%)
RAT
1 (20%)
NetWireRC
1 (20%)
Attacker & Actors
Attacker & Actors

The status of the attacker or attack group being issued.

Keyword Average Label
UNC5221
1 (100%)
Attack technique
Technique

This is an attack technique that is becoming an issue.

Keyword Average Label
Campaign
5 (33.3%)
apt
3 (20%)
Exploit
2 (13.3%)
Backdoor
2 (13.3%)
Stealer
1 (6.7%)
Country & Company
Country & Company

This is a country or company that is an issue.

Keyword Average Label
China
6 (30%)
Government
4 (20%)
Kaspersky
3 (15%)
Russia
3 (15%)
Mandiant
1 (5%)
Threat info
Last 5

SNS

(Total : 12)
  Total keyword

Government Campaign China target Kaspersky Russia apt attack ROMCOMRAT Backdoor Report Exploit Attacker Stealer NetWireRC RAT ROMCOM RAT Chrome Recorded Future Phishing Europe Operation Malware

No Title Date
1Cyber_OSINT @Cyber_O51NT
The Russian-speaking cyber espionage group Nebulous Mantis, also known as Cuba or Tropical Scorpius, has escalated targeted attacks using RomCom malware since mid-2022 https://t.co/Jgqcwyndrr		2025.05.01
2The Hacker News @TheHackersNews
???? New Espionage Alert! A Russian-speaking APT group, Nebulous Mantis, is deploying the stealthy RomCom RAT to target NATO-linked entities, gov agencies, and critical infra — using bulletproof hosting, IPFS, and over 40 remote commands. ???? See how it works, who’s behind it, and https://t.co/8e		2025.04.30
3Threat Intelligence @threatintel
Recent Billbug espionage attacks involved multiple new custom tools, including loaders, credential stealers, and a reverse SSH tool. The attackers also used a new variant of their Sagerunex backdoor. Find out more: https://t.co/qen5IAHnET #China #Espionage #APT https://t.co/ktvjQ8IUrR		2025.04.22
4Threat Intelligence @threatintel
China-linked espionage group Billbug compromised multiple orgs in a Southeast Asian country, including a government ministry, an air traffic control org, and telco operator. Find out more: https://t.co/qen5IAHnET #China #Espionage #APT https://t.co/Oe9mczBYC8		2025.04.22
5Cyber_OSINT @Cyber_O51NT
Congress warns that China's DeepSeek poses a "profound threat," fueled by illegal chip acquisitions and stolen AI model architecture, linking it to espionage and surveillance efforts. #China #Espionage #AI https://t.co/2wTtW1XrFs		2025.04.21

News

(Total : 3)
  Total keyword

China Chinese RCE Campaign target Exploit UNC5221 Mandiant

No Title Date
1Chinese espionage group leans on open-source tools to mask intrusions - CyberScoop2025.04.16
2Target espionage activity UAC-0226 in relation to the centers of innovation, state and law enforcement services using the GIFTEDCROOK (CERT-UA#14303) - Cert-UA / Cert-UA / malpedia2025.04.06
3China-backed espionage group hits Ivanti customers again - CyberScoop2025.04.04

Additional information

No data
No data
No data
No data
Beta Service, If you select keyword, you can check detailed information.