Cyber Threat Trends

Summary: 2025/04/29 04:52

First reported date: 2016/07/21
Inquiry period : 2025/03/30 04:52 ~ 2025/04/29 04:52 (1 months), 10 search results

전 기간대비 신규 트렌드를 보이고 있습니다.
공격기술 RCE Campaign Phishing Backdoor hijack hacking Exploit Remote Code Execution 도 새롭게 확인됩니다.
기관 및 기업 United States UK United Kingdom 도 새롭게 확인됩니다.
기타 WooCommerce Update WordPress target fake 등 신규 키워드도 확인됩니다.

* 최근 뉴스기사 Top3:
    ㆍ 2025/04/28 WooCommerce Users Targeted by Fake Patch Phishing Campaign Deploying Site Backdoors
    ㆍ 2025/04/17 6,000 WordPress Sites Affected by Arbitrary File Move Vulnerability in Drag and Drop Multiple File Upload for WooCommerce WordPress Plugin
    ㆍ 2025/04/16 [webapps] WooCommerce Customers Manager 29.4 - Post-Authenticated SQL Injection

Date range button:

First seen:

Last seen:

Keyword

Trend graph by period

Related keyword cloud

Top 100

#	Trend	Count	Comparison
1	WooCommerce	10	▲ new
2	RCE	9	▲ new
3	Update	5	▲ new
4	WordPress	5	▲ new
5	target	4	▲ new
6	Campaign	4	▲ new
7	fake	3	▲ new
8	Phishing	3	▲ new
9	Malware	2	▲ new
10	Report	2	▲ new
11	Backdoor	2	▲ new
12	United States	2	▲ new
13	Access	2	▲ new
14	Vulnerability	2	▲ new
15	intelligence	1	▲ new
16	Advertising	1	▲ new
17	plugin	1	▲ new
18	File	1	▲ new
19	Alleged	1	▲ new
20	Wordfence	1	▲ new
21	WP	1	▲ new
22	Admin	1	▲ new
23	payment	1	▲ new
24	httpstcoMfa	1	▲ new
25	hijack	1	▲ new
26	MFA	1	▲ new
27	securityaffairs	1	▲ new
28	hacking	1	▲ new
29	Exploit	1	▲ new
30	tool	1	▲ new
31	platform	1	▲ new
32	API	1	▲ new
33	PyPI	1	▲ new
34	httpstcoA	1	▲ new
35	Remote Code Execution	1	▲ new
36	Education	1	▲ new
37	breach	1	▲ new
38	Extensive	1	▲ new
39	MWNEWS	1	▲ new
40	CVSS	1	▲ new
41	UK	1	▲ new
42	Shop	1	▲ new
43	Sale	1	▲ new
44	United Kingdom	1	▲ new
45	Customers	1	▲ new
46	Manager	1	▲ new
47	SQL	1	▲ new
48	Injection	1	▲ new
49	largescale	1	▲ new

Special keyword group

Top 5

Malware Type

This is the type of malware that is becoming an issue.

No data.

Attacker & Actors

The status of the attacker or attack group being issued.

Keyword	Average	Label

Technique

This is an attack technique that is becoming an issue.

Keyword	Average	Label
RCE		9 (40.9%)
Campaign		4 (18.2%)
Phishing		3 (13.6%)
Backdoor		2 (9.1%)
hijack		1 (4.5%)

Country & Company

This is a country or company that is an issue.

Keyword	Average	Label
United States		2 (50%)
UK		1 (25%)
United Kingdom		1 (25%)

Threat info

Last 5

SNS

(Total : 6)

Total keyword

RCE Update Campaign WordPress target Phishing United States MFA hijack Backdoor hacking payment United Kingdom UK Remote Code Execution

No	Title	Date
1	Cyber_OSINT @Cyber_O51NT Cybersecurity researchers warn of a phishing campaign targeting WooCommerce users with a fake security alert that installs backdoors instead of patches, marking a sophisticated evolution of a similar December 2023 threat. #WooCommerce #Cybersecurity https://t.co/31MYAs1qpH	2025.04.28
2	Pierluigi Paganini - Security Affairs @securityaffairs @patchstackapp A large-scale #phishing campaign targets #WordPress #WooCommerce users https://t.co/NH3UBLIrpZ #securityaffairs #hacking	2025.04.28
3	BleepingComputer @BleepinComputer WooCommerce admins targeted by fake security patches that hijack sites - @billtoulas https://t.co/Mfa5hWpjij https://t.co/Mfa5hWpjij	2025.04.26
4	Dark Web Informer - Cyber Threat Intelligence @DarkWebInformer ???????????? Alleged WP Admin Access to U.S. WooCommerce Store (411 Orders) A threat actor is allegedly auctioning WordPress admin access to a U.S.-based WooCommerce shop using a card-only payment form via Authorize[.Net (non-iframe). ???? Access type: WP Admin (with full rights) ???? https://t.co	2025.04.17
5	Dark Web Informer - Cyber Threat Intelligence @DarkWebInformer ???? UK WooCommerce Shop Access for Sale A threat actor is auctioning admin-level access to a UK-based WordPress/WooCommerce store used in a Card-Saver iframe campaign. ???? 500+ orders in 24h (April 3–4, 2025) ????️ Admin can edit topics, upload PHP, use File Manager ???? Start: 1000$ https://t.c	2025.04.11

News

(Total : 4)

Total keyword

RCE Malware target Report Vulnerability Update WordPress Advertising intelligence plugin Phishing Campaign Backdoor Exploit United States Attacker CVSS Education

No	Title	Date
1	WooCommerce Users Targeted by Fake Patch Phishing Campaign Deploying Site Backdoors - The Hacker News	2025.04.28
2	6,000 WordPress Sites Affected by Arbitrary File Move Vulnerability in Drag and Drop Multiple File Upload for WooCommerce WordPress Plugin - Malware.News	2025.04.17
3	[webapps] WooCommerce Customers Manager 29.4 - Post-Authenticated SQL Injection - Exploit-DB.com	2025.04.16
4	Extensive WooCommerce data breach claimed - Malware.News	2025.04.10

Additional information

No	Title	Date
1	FBI Reports ₹1.38 Lakh Crore Loss in 2024, a 33% Surge from 2023 - Malware.News	2025.04.29
2	US intensifies Salt Typhoon crackdown with public info request - Malware.News	2025.04.29
3	Trump moves threaten US cyber defenses, says former CISA director Easterly - Malware.News	2025.04.29
4	Escalating attacks against Ivanti VPN appliances expected - Malware.News	2025.04.29
5	Critical Planet Technology switch vulnerabilities pose total takeover risk - Malware.News	2025.04.29
View only the last 5

No	Title	Date
1	20,000 WordPress Sites Affected by Privilege Escalation Vulnerability in WCFM – WooCommerce Frontend Manager WordPress Plugin - Malware.News	2024.09.25
2	WooCommerce and two-factor authentication - Security Boulevard	2023.08.02
3	WooCommerce and two-factor authentication - Security Boulevard	2023.08.02
4	WooCommerce Credit Card Skimmer Hides in Plain Sight - Security Boulevard	2021.05.29
5	WooCommerce Credit Card Skimmer Hides in Plain Sight - Security Boulevard	2021.05.29
View only the last 5

No data

Beta Service, If you select keyword, you can check detailed information.