popup

Cyber Threat Trends

  1. Day Week

Gemelli flickerflypro flickerfly

Summary: 2025/04/28 23:56

First reported date: 2014/05/09
Inquiry period : 2025/03/29 23:56 ~ 2025/04/28 23:56 (1 months), 21 search results

전 기간대비 29% 높은 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 Firmware Malware Update Vulnerability Exploit 입니다.
악성코드 유형 Entropy Trojan DYEPACK 도 새롭게 확인됩니다.
공격자 DragonOK 도 새롭게 확인됩니다.
공격기술 RCE hijack XSS Hijacking Social Engineering 도 새롭게 확인됩니다.
기관 및 기업 Kaspersky United Kingdom Australia Europe Coinbase 도 새롭게 확인됩니다.
기타 Cryptocurrency code SMA Email iCloud 등 신규 키워드도 확인됩니다.

 * 최근 뉴스기사 Top3:
    ㆍ 2025/04/26 What is the xBOM?
    ㆍ 2025/04/24 Eclypsium Supply Chain Security Platform Now Offered Through GuidePoint Security
    ㆍ 2025/04/24 Exploiting the Synology DiskStation with Null-byte Writes

Trend graph by period


Related keyword cloud
Top 100
# Trend Count Comparison
1Firmware 21 ▲ 6 (29%)
2Malware 12 ▲ 1 (8%)
3Update 12 ▲ 4 (33%)
4Vulnerability 10 ▲ 4 (40%)
5Exploit 8 ▲ 2 (25%)
6Software 7 ▲ 2 (29%)
7Remote Code Execution 6 ▲ 1 (17%)
8attack 6 ▼ -1 (-17%)
9United States 6 ▲ 4 (67%)
10target 5 ▼ -2 (-40%)
11Advertising 5 ▲ 4 (80%)
12Report 5 ▼ -2 (-40%)
13Supply chain 4 ▼ -2 (-50%)
14Operation 4 ▲ 3 (75%)
15Microsoft 4 ▲ 3 (75%)
16ESET 3 ▲ 2 (67%)
17Campaign 3 ▼ -1 (-33%)
18Windows 3 ▲ 1 (33%)
19RCE 3 ▲ new
20intelligence 3 ▼ -1 (-33%)
21Ransomware 3 - 0 (0%)
22hardware 2 - 0 (0%)
23Phishing 2 ▲ 1 (50%)
24c&c 2 - 0 (0%)
25Cryptocurrency 2 ▲ new
26code 2 ▲ new
27Government 2 - 0 (0%)
28Entropy 2 ▲ new
29SMA 2 ▲ new
30Email 2 ▲ new
31iCloud 2 ▲ new
32Trojan 2 ▲ new
33hijack 2 ▲ new
34MWNEWS 2 ▲ new
35Kaspersky 2 ▲ new
36CVSS 2 - 0 (0%)
37GameoverP2P 2 - 0 (0%)
38GitHub 2 ▲ new
39LinkedIn 2 ▲ new
40RATel 2 ▲ 1 (50%)
41DNS 2 ▲ new
42NIST 2 ▲ new
43Command 2 ▲ new
44Sonicwall 2 ▲ new
45Linux 2 - 0 (0%)
46IoT 2 ▲ 1 (50%)
47AI 2 ▲ new
48CISA 2 ▼ -2 (-100%)
49Twitter 2 ▲ new
50ta 1 ▲ new
51Router 1 - 0 (0%)
52XSS 1 ▲ new
53Angreifer 1 ▲ new
54missbrauchen 1 ▲ new
55Data Center 1 - 0 (0%)
56Flaw 1 ▲ new
57Hits 1 ▲ new
58DYEPACK 1 ▲ new
59Zero Trust 1 ▲ new
60United Kingdom 1 ▲ new
61Australia 1 ▲ new
62CISAs 1 ▲ new
63AiCloud 1 ▲ new
64Hijacking 1 ▲ new
65ASUS 1 ▲ new
66supply 1 ▲ new
67Materials 1 ▲ new
68Bill 1 ▲ new
69Europe 1 ▲ new
70Takedown 1 ▲ new
71Education 1 - 0 (0%)
72Android 1 ▼ -1 (-100%)
73Triada 1 ▲ new
74research 1 ▲ new
75Kasperskys 1 ▲ new
76chain 1 ▲ new
77Eclypsium 1 - 0 (0%)
78Confirms 1 ▲ new
79gt 1 ▲ new
80Synology 1 ▲ new
81pointer 1 ▲ new
82payload 1 ▲ new
83NAS 1 ▲ new
84PoC 1 ▲ new
85Oracle 1 - 0 (0%)
86April 1 ▲ new
87traditional 1 ▲ new
88Rockbox 1 ▲ new
89Critical 1 ▲ new
90alte 1 ▲ new
91DragonOK 1 ▲ new
92future 1 ▲ new
93memory 1 ▲ new
94Cloudflare 1 ▲ new
95Java 1 - 0 (0%)
96Gmail 1 ▲ new
97Coinbase 1 ▲ new
98Akamai 1 ▲ new
99Victim 1 ▼ -1 (-100%)
100Social Engineering 1 ▲ new
Special keyword group
Top 5
Malware Type
Malware Type

This is the type of malware that is becoming an issue.

Keyword Average Label
Ransomware
3 (23.1%)
Entropy
2 (15.4%)
Trojan
2 (15.4%)
GameoverP2P
2 (15.4%)
RATel
2 (15.4%)
Attacker & Actors
Attacker & Actors

The status of the attacker or attack group being issued.

Keyword Average Label
DragonOK
1 (100%)
Attack technique
Technique

This is an attack technique that is becoming an issue.

Keyword Average Label
Exploit
8 (29.6%)
Remote Code Execution
6 (22.2%)
Campaign
3 (11.1%)
RCE
3 (11.1%)
Phishing
2 (7.4%)
Country & Company
Country & Company

This is a country or company that is an issue.

Keyword Average Label
United States
6 (23.1%)
Microsoft
4 (15.4%)
ESET
3 (11.5%)
Government
2 (7.7%)
Kaspersky
2 (7.7%)
Threat info
Last 5

SNS

(Total : 2)
  Total keyword

Firmware CVSS Cryptocurrency Android Trojan Attacker Update Exploit Vulnerability CISA Kaspersky

No Title Date
1Cyber_OSINT @Cyber_O51NT
Kaspersky's research reveals that the Triada Trojan has evolved to infect Android firmware, embedding itself into system apps and compromising user data across various applications, including cryptocurrency wallets and messaging services. #Cybersecurity … https://t.co/t6bTjBOtlh		2025.04.25
2The Hacker News @TheHackersNews
???? Actively Exploited SonicWall Flaw Hits CISA’s KEV List. Remote attackers can execute code via SMA 100 Series bug (CVE-2021-20035, CVSS 7.2). ➡️ Injects OS commands as ‘nobody’ user ➡️ Impacts SMA 200–500v on outdated firmware ➡️ FCEB agencies must patch by May 7, 2025 Your https://t.co/U3Xbw		2025.04.17

News

(Total : 19)
  Total keyword

Firmware Malware Update Vulnerability Attacker Exploit Software United States Remote Code Execution attack Report target Advertising Supply chain Microsoft Operation Campaign intelligence ESET Ransomware RCE Windows Email hijack c&c iCloud RATel Entropy GameoverP2P IoT Government Phishing DNS NIST Linux LinkedIn Twitter GitHub NAS Australia DYEPACK Education Zero Trust Takedown United Kingdom Europe CISA XSS Data Center Hijacking PoC Router CVSS Oracle EDR Cisco Red Hat Victim Cryptocurrency Social Engineering Vawtrak Google Ubuntu Coinbase Distribution DragonOK ...

No Title Date
1What is the xBOM? - Malware.News2025.04.26
2Eclypsium Supply Chain Security Platform Now Offered Through GuidePoint Security - Malware.News2025.04.24
3Exploiting the Synology DiskStation with Null-byte Writes - Malware.News2025.04.24
4Rockbox 4.0 Released - Hackaday2025.04.20
5ASUS Confirms Critical Flaw in AiCloud Routers; Users Urged to Update Firmware - The Hacker News2025.04.19

Additional information

No data
No data
No data
No URL CC ASN Co Reporter Date
1http://194.116.215.67/i
firmware mirai sh ua-wget 		RU RUPerviy TSOD LLCNDA0E2024.09.05
2http://194.116.215.67/e
firmware mirai sh ua-wget 		RU RUPerviy TSOD LLCNDA0E2024.09.05
3http://194.116.215.67/f
firmware mirai sh ua-wget 		RU RUPerviy TSOD LLCNDA0E2024.09.05
4https://194.116.215.67/e
firmware mirai sh ua-wget 		RU RUPerviy TSOD LLCNDA0E2024.09.05
5http://194.116.215.67/a
firmware mirai sh ua-wget 		RU RUPerviy TSOD LLCNDA0E2024.09.05
View only the last 5
Beta Service, If you select keyword, you can check detailed information.