Cyber Threat Trends

Summary: 2025/04/29 00:33

First reported date: 2014/05/21
Inquiry period : 2025/03/30 00:33 ~ 2025/04/29 00:33 (1 months), 26 search results

전 기간대비 동일한 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 attack Alto Networks Campaign Phishing 입니다.
악성코드 유형 Remcos Xloader ShadowPad Maze 도 새롭게 확인됩니다.
공격자 TraderTraitor CryptoCore 도 새롭게 확인됩니다.
공격기술 RCE hacking hijack 도 새롭게 확인됩니다.
기관 및 기업 North Korea Russia Google 북한 Oracle Tenable Kaspersky 도 새롭게 확인됩니다.
기타 PANOS Prisma login Password DLP 등 신규 키워드도 확인됩니다.

팰로앨토 네트웍스는 2007년에 설립한 미국의 보안회사이다. 애플리케이션 레벨의 네트워크 보안 장비로서 기존의 포트 기반의 보안정책이 아닌 애플리케이션 기반의 보안정책을 제공한다.

* 최근 뉴스기사 Top3:
    ㆍ 2025/04/28 Deploy Bravely with Prisma AIRS
    ㆍ 2025/04/28 Embracing the Future of Work with Innovations in Prisma SASE
    ㆍ 2025/04/28 Introducing XSIAM 3.0

Date range button:

First seen:

Last seen:

Keyword

Trend graph by period

Related keyword cloud

Top 100

#	Trend	Count	Comparison
1	Palo Alto Networks	26	- 0 (0%)
2	Malware	13	▼ -5 (-38%)
3	attack	13	▲ 1 (8%)
4	Palo	9	- 0 (0%)
5	Alto	9	▲ 2 (22%)
6	Networks	8	▲ 1 (13%)
7	RCE	7	▲ new
8	Operation	6	▼ -2 (-33%)
9	United States	6	▼ -2 (-33%)
10	Exploit	6	▼ -3 (-50%)
11	Vulnerability	5	▼ -1 (-20%)
12	Campaign	5	▲ 1 (20%)
13	Report	5	▼ -2 (-40%)
14	target	5	▼ -2 (-40%)
15	Update	5	▼ -3 (-60%)
16	Phishing	4	▲ 1 (25%)
17	PANOS	4	▲ new
18	AI	4	▲ 2 (50%)
19	North Korea	3	▲ new
20	hacking	3	▲ new
21	intelligence	3	▼ -5 (-167%)
22	Microsoft	3	▲ 1 (33%)
23	Ransomware	3	▼ -1 (-33%)
24	Prisma	3	▲ new
25	login	2	▲ new
26	Password	2	▲ new
27	Zero Trust	2	▼ -2 (-100%)
28	Paloalto	2	▲ 1 (50%)
29	팔로알토	2	▲ 1 (50%)
30	Palo Alto	2	▲ 1 (50%)
31	XSIAM	2	▲ 1 (50%)
32	DLP	2	▲ new
33	Software	2	▼ -1 (-50%)
34	Remcos	2	▲ new
35	EDR	2	▲ new
36	powershell	2	▲ new
37	Xloader	2	▲ new
38	Russia	2	▲ new
39	Victim	2	▼ -2 (-100%)
40	Telegram	2	▲ new
41	China	2	▼ -1 (-50%)
42	Social Engineering	2	▲ 1 (50%)
43	Google	2	▲ new
44	MultiStage	2	▲ new
45	Government	2	▼ -5 (-250%)
46	IPs	2	▲ new
47	payment	2	▲ new
48	iCloud	2	▲ 1 (50%)
49	VPN	2	- 0 (0%)
50	Data Center	2	▲ 1 (50%)
51	Australia	2	▲ 1 (50%)
52	북한	1	▲ new
53	Supply chain	1	▼ -2 (-200%)
54	SolarWinds	1	▲ new
55	XDR	1	▲ new
56	threatdetection	1	▲ new
57	공격	1	▲ new
58	가짜	1	▲ new
59	화폐	1	▲ new
60	암호	1	▲ new
61	MacOS	1	- 0 (0%)
62	TraderTraitor	1	▲ new
63	CryptoCore	1	▲ new
64	Coordinated	1	▲ new
65	surge	1	▲ new
66	Windows	1	▼ -1 (-100%)
67	Linux	1	▲ new
68	scanner	1	▲ new
69	DYEPACK	1	▼ -1 (-100%)
70	Cryptocurrency	1	- 0 (0%)
71	UNC4736	1	▲ new
72	utilizes	1	▲ new
73	Byrd	1	▲ new
74	Education	1	▼ -3 (-300%)
75	NIST	1	- 0 (0%)
76	ShadowPad	1	▲ new
77	Browser	1	▲ new
78	Oracle	1	▲ new
79	RATel	1	▼ -1 (-100%)
80	ChatGPT	1	▲ new
81	Copy-Paste	1	▲ new
82	AIRS	1	▲ new
83	plugin	1	- 0 (0%)
84	Red Team	1	▲ new
85	hijack	1	▲ new
86	LinkedIn	1	- 0 (0%)
87	Tenable	1	▲ new
88	DarkWeb	1	- 0 (0%)
89	GlobalProtect	1	▲ new
90	Black Basta	1	- 0 (0%)
91	Cobra Carbon System	1	▲ new
92	Kaspersky	1	▲ new
93	APT15	1	▲ new
94	APT41	1	▲ new
95	Maze	1	▲ new
96	Cobalt Strike	1	- 0 (0%)
97	Cortex	1	▲ new
98	Booking	1	▲ new
99	Email	1	▼ -1 (-100%)
100	Takedown	1	▲ new

Special keyword group

Top 5

Malware Type

This is the type of malware that is becoming an issue.

Keyword	Average	Label
Ransomware		3 (25%)
Remcos		2 (16.7%)
Xloader		2 (16.7%)
ShadowPad		1 (8.3%)
RATel		1 (8.3%)

Attacker & Actors

The status of the attacker or attack group being issued.

Keyword	Average	Label
TraderTraitor		1 (50%)
CryptoCore		1 (50%)

Technique

This is an attack technique that is becoming an issue.

Keyword	Average	Label
RCE		7 (25%)
Exploit		6 (21.4%)
Campaign		5 (17.9%)
Phishing		4 (14.3%)
hacking		3 (10.7%)

Country & Company

This is a country or company that is an issue.

Keyword	Average	Label
Palo Alto Networks		26 (45.6%)
United States		6 (10.5%)
North Korea		3 (5.3%)
Microsoft		3 (5.3%)
Paloalto		2 (3.5%)

Threat info

Last 5

SNS

(Total : 5)

Total keyword

Palo Alto Networks attack target RCE Malware powershell Remcos Xloader Exploit Vulnerability MFA Update Attacker

No	Title	Date
1	Cyber_OSINT @Cyber_O51NT A recent multi-stage malware attack utilizes .JSE and PowerShell to deliver Agent Tesla, Remcos RAT, and XLoader, as noted by Palo Alto Networks' Saqib Khanzada, who highlights attackers' tactics to evade detection and ensure payload execution. https://t.co/i7vn5wZL9L	2025.04.18
2	Cyber_OSINT @Cyber_O51NT Palo Alto Networks warns of increased brute-force login attempts on PAN-OS GlobalProtect gateways, with nearly 24,000 unique IPs involved, signaling possible upcoming attacks, though no vulnerabilities have been exploited yet. #CyberSecurity https://t.co/iTa3tC3Fmy	2025.04.12
3	The Hacker News @TheHackersNews ???? 23,958 IPs. 5 countries. 1 target. Palo Alto Networks' GlobalProtect portals are under coordinated brute-force login attacks—no vulnerability yet, but the threat is real. Urgent: ✅ Update PAN-OS ✅ Enforce MFA ✅ Harden your portals ???? Full story: https://t.co/v1DNY1VwxB	2025.04.11
4	Kimberly @StopMalvertisin The Register \| Why is someone mass-scanning Juniper and Palo Alto Networks products? https://t.co/SBkLV8WlQB	2025.04.03
5	Cyber_OSINT @Cyber_O51NT A surge in Palo Alto Networks scanner activity reveals nearly 24,000 unique IPs probing defenses, indicating a coordinated effort to identify vulnerabilities, likely as a precursor to targeted attacks. #CyberSecurity #ThreatDetection https://t.co/yU0r57LT8D	2025.04.01

News

(Total : 21)

Total keyword

Palo Alto Networks Malware attack United States Operation Campaign Report RCE Exploit Attacker Update Phishing Vulnerability Ransomware Microsoft hacking target North Korea intelligence Social Engineering Zero Trust Government Data Center DLP Software EDR Password Paloalto Australia payment Google Russia VPN Victim Telegram China iCloud Linux 북한 UNC4736 Windows MacOS CryptoCore Cryptocurrency TraderTraitor Email Cobra Carbon System Browser Oracle RATel ChatGPT Copy-Paste plugin Red Team hijack LinkedIn Tenable ShadowPad DarkWeb Black Basta Kaspersky APT15 APT41 Maze Cobalt Strike Booking RAT Takedown Supply chain SolarWinds XDR Xloader FBI DNS Honeynet CISA NSA Five Eyes Education ...

No	Title	Date
1	Introducing XSIAM 3.0 - Malware.News	2025.04.28
2	Embracing the Future of Work with Innovations in Prisma SASE - Malware.News	2025.04.28
3	Deploy Bravely with Prisma AIRS - Malware.News	2025.04.28
4	Top Tier Target \| What It Takes to Defend a Cybersecurity Company from Today’s Adversaries - Malware.News	2025.04.28
5	Bruce Byrd on Public-Private Partnerships in Cybersecurity - Malware.News	2025.04.25

Additional information

No	Title	Date
1	Employee monitoring app exposes users, leaks 21+ million screenshots - Malware.News	2025.04.28
2	Introducing XSIAM 3.0 - Malware.News	2025.04.28
3	Deploy Bravely with Prisma AIRS - Malware.News	2025.04.28
4	2025 Cyber Resilience Research Discovers Speed of AI Advancing Emerging Attack Types - Malware.News	2025.04.28
5	Intel CEO Targets Change in Corporate Culture to Shape Up - Bloomberg Technology	2025.04.28
View only the last 5

No	Title	Date
1	Introducing XSIAM 3.0 - Malware.News	2025.04.28
2	Introducing XSIAM 3.0 - Malware.News	2025.04.28
3	Introducing XSIAM 3.0 - Malware.News	2025.04.28
4	Embracing the Future of Work with Innovations in Prisma SASE - Malware.News	2025.04.28
5	Embracing the Future of Work with Innovations in Prisma SASE - Malware.News	2025.04.28
View only the last 5

No data

Beta Service, If you select keyword, you can check detailed information.