popup

Cyber Threat Trends

  1. Day Week

Gemelli flickerflypro flickerfly

Summary: 2025/04/28 21:47

First reported date: 2023/05/23
Inquiry period : 2025/03/29 21:47 ~ 2025/04/28 21:47 (1 months), 14 search results

전 기간대비 50% 높은 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 Rhysida Ransomware Victim Rhysida Ransomware Alert 입니다.
악성코드 유형 Alureon SocGholish SectopRAT NetWireRC BlackSuit RATel XMRig 도 새롭게 확인됩니다.
공격자 UNC5221 도 새롭게 확인됩니다.
공격기술 Campaign hacking 도 새롭게 확인됩니다.
기관 및 기업 United States Brazil Kaspersky Russia Recorded Future Google Europe ThreatMon Government China Germany India Cisco Check Point Apple 도 새롭게 확인됩니다.
기타 MDB Report Oregon Update DarkWeb 등 신규 키워드도 확인됩니다.  Ref.

 * 최근 뉴스기사 Top3:
    ㆍ 2025/04/23 The Massive, Hidden Infrastructure Enabling Big Game Hunting at Scale
    ㆍ 2025/04/17 Extensive Oregon agency data breach admitted by Rhysida ransomware gang
    ㆍ 2025/04/07 7th April – Threat Intelligence Report


참고로 동일한 그룹의 악성코드 타입은 WannaCry Sodinokibi Phobos 등 78개 종이 확인됩니다.

Trend graph by period


Related keyword cloud
Top 100
# Trend Count Comparison
1Rhysida 14 ▲ 7 (50%)
2Ransomware 14 ▲ 8 (57%)
3Victim 12 ▲ 7 (58%)
4Rhysida Ransomware 11 ▲ 5 (45%)
5Alert 6 ▲ 2 (33%)
6Malware 3 ▲ 2 (67%)
7Group 3 ▲ 1 (33%)
8MDB 3 ▲ new
9Report 3 ▲ new
10Oregon 2 ▲ new
11Update 2 ▲ new
12DarkWeb 2 ▲ new
13Aços 2 ▲ new
14intelligence 2 ▲ new
15United States 2 ▲ new
16Campaign 2 ▲ new
17Favorit 2 ▲ new
18attack 2 ▲ 1 (50%)
19Distribuidora 2 ▲ new
20Srl 2 ▲ new
21Capitals 2 ▲ new
22Swiss 2 ▲ new
23target 2 ▲ 1 (50%)
24Distribution 1 ▲ new
25Ltda 1 ▲ new
26Brazil 1 ▲ new
27Milicic 1 ▲ new
28SA 1 ▲ new
29Argentine 1 ▲ new
30Kaspersky 1 ▲ new
31Russia 1 ▲ new
32Cryptocurrency 1 ▲ new
33Clarity 1 ▲ new
34Recorded Future 1 ▲ new
35Alureon 1 ▲ new
36Criminal 1 ▲ new
37Chrome 1 ▲ new
38Browser 1 ▲ new
39Education 1 ▲ new
40Advertising 1 ▲ new
41Google 1 ▲ new
42Europe 1 ▲ new
43SocGholish 1 ▲ new
44Rhysid 1 ▲ new
45Actor 1 ▲ new
46ThreatMon 1 ▲ new
47Government 1 ▲ new
48Composite 1 ▲ new
49MWNEWS 1 ▲ new
50SectopRAT 1 ▲ new
51Has 1 - 0 (0%)
52Fallen 1 - 0 (0%)
53Cobalt Strike 1 ▲ new
54NetWireRC 1 ▲ new
55Vulnerability 1 ▲ new
56CVSS 1 ▲ new
57Android 1 ▲ new
58China 1 ▲ new
59Germany 1 ▲ new
60India 1 ▲ new
61BlackSuit 1 ▲ new
62Cisco 1 ▲ new
63agency 1 ▲ new
64RATel 1 ▲ new
65Check Point 1 ▲ new
66XMRig 1 ▲ new
67hacking 1 ▲ new
68Apple 1 ▲ new
69ZeroDay 1 ▲ new
70UNC5221 1 ▲ new
71Dimension 1 ▲ new
72Ventures 1 ▲ new
73Inc 1 ▲ new
74Canada 1 - 0 (0%)
75Department 1 ▲ new
76Operation 1 ▲ new
Special keyword group
Top 5
Malware Type
Malware Type

This is the type of malware that is becoming an issue.

Keyword Average Label
Rhysida
14 (30.4%)
Ransomware
14 (30.4%)
Rhysida Ransomware
11 (23.9%)
Alureon
1 (2.2%)
SocGholish
1 (2.2%)
Attacker & Actors
Attacker & Actors

The status of the attacker or attack group being issued.

Keyword Average Label
UNC5221
1 (100%)
Attack technique
Technique

This is an attack technique that is becoming an issue.

Keyword Average Label
Campaign
2 (66.7%)
hacking
1 (33.3%)
Country & Company
Country & Company

This is a country or company that is an issue.

Keyword Average Label
United States
2 (11.8%)
Brazil
1 (5.9%)
Kaspersky
1 (5.9%)
Russia
1 (5.9%)
Recorded Future
1 (5.9%)
Malware Family
Top 5

A malware family is a group of applications with similar attack techniques.
In this trend, it is classified into Ransomware, Stealer, RAT or Backdoor, Loader, Botnet, Cryptocurrency Miner.

Threat info
Last 5

SNS

(Total : 11)
  Total keyword

Rhysida Ransomware Rhysida Ransomware Victim DarkWeb ThreatMon intelligence Brazil Canada target

No Title Date
1ThreatMon @MonThreat
Actor : rhysida Victim : MDB  Date : 2025-04-26 18:03:07 UTC +3 According to #DarkWeb #Ransomware activity detected by the ThreatMon Threat Intelligence Team. The “#rhysida” Ransomware group has added MDB to its victims.		2025.04.26
2FalconFeeds.io @FalconFeedsio
???? Ransomware Alert: MDB Srl (https://t.co/ohdbP0dKUl), a company specialized in manufacturing innovative green climbing remote-controlled machines for agricultural and industrial applications, has fallen victim to RHYSIDA Ransomware NB : The group plans to publish the https://t.co/fF56QAGJbR		2025.04.26
3Dark Web Informer - Cyber Threat Intelligence @DarkWebInformer
????????????MDB Srl has Fallen Victim to RHYSIDA Ransomware 5 BTC = 472,052.45$ USD at time of post https://t.co/2itMkdgvLd		2025.04.26
4FalconFeeds.io @FalconFeedsio
???? Ransomware Alert: Milicic SA (https://t.co/cRZGmf4mdd), an Argentine construction and services company with over 50 years of experience in major projects across mining, oil & gas, energy, and infrastructure sectors, has been listed as a victim of the RHYSIDA Ransomware. NB: https://t.co/1		2025.04.23
5FalconFeeds.io @FalconFeedsio
???? Ransomware Alert: Aços Favorit Distribuidora Ltda, a Brazil-based steel distributor specializing in special steels and structural materials, falls victim to RHYSIDA ransomware. NB: The data is expected to be published within 6–7 days. ???? Key Details: ????Threat Actor : https://t.co/TqApti		2025.04.22

News

(Total : 3)
  Total keyword

Ransomware Report Rhysida Malware Update Victim United States attack Campaign Criminal Kaspersky Russia Cryptocurrency Distribution Recorded Future Alureon Cobalt Strike Chrome Browser Education Advertising Google Government intelligence Europe SocGholish target ZeroDay Operation DarkWeb Vulnerability CVSS Android Attacker China Germany India BlackSuit SectopRAT Rhysida Ransomware Cisco RATel Check Point XMRig hacking Apple NetWireRC UNC5221

No Title Date
1The Massive, Hidden Infrastructure Enabling Big Game Hunting at Scale - Malware.News2025.04.23
2Extensive Oregon agency data breach admitted by Rhysida ransomware gang - Malware.News2025.04.17
37th April – Threat Intelligence Report - Malware.News2025.04.07

Additional information

No data
No data
No data
No data
Beta Service, If you select keyword, you can check detailed information.