Cyber Threat Trends

Summary: 2025/04/29 06:31

First reported date: 2013/05/20
Inquiry period : 2025/03/30 06:31 ~ 2025/04/29 06:31 (1 months), 45 search results

전 기간대비 -4% 낮은 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 Campaign target Phishing Report attack 입니다.
악성코드 유형 BlackSuit Ransomware SectopRAT HyperSSL 도 새롭게 확인됩니다.
공격자 OilRig 도 새롭게 확인됩니다.
공격기술 RCE Hijacking 도 새롭게 확인됩니다.
기관 및 기업 North Korea South Korea Government Iran 도 새롭게 확인됩니다.
기타 amp unauthorized FSA Korean WooCommerce 등 신규 키워드도 확인됩니다.

* 최근 뉴스기사 Top3:
    ㆍ 2025/04/28 WooCommerce Users Targeted by Fake Patch Phishing Campaign Deploying Site Backdoors
    ㆍ 2025/04/26 North Korean Group Creates Fake Crypto Firms in Job Complex Scam
    ㆍ 2025/04/25 How to Spot Fake Online Reviews and Protect Yourself from Scams

Date range button:

First seen:

Last seen:

Keyword

Trend graph by period

Related keyword cloud

Top 100

#	Trend	Count	Comparison
1	Fake	45	▼ -2 (-4%)
2	Malware	20	- 0 (0%)
3	Campaign	12	▲ 1 (8%)
4	target	12	▲ 2 (17%)
5	Phishing	10	▲ 2 (20%)
6	Report	6	▲ 3 (50%)
7	attack	5	▲ 1 (20%)
8	Kaspersky	5	▲ 4 (80%)
9	Russia	5	▲ 4 (80%)
10	Email	5	▲ 1 (20%)
11	RCE	4	▲ new
12	amp	4	▲ new
13	NetWireRC	4	▲ 2 (50%)
14	Criminal	4	- 0 (0%)
15	North Korea	4	▲ new
16	Japan	4	▲ 3 (75%)
17	hacking	4	▲ 3 (75%)
18	hijack	4	▲ 3 (75%)
19	powershell	3	▲ 2 (67%)
20	BlackSuit	3	▲ new
21	unauthorized	3	▲ new
22	FSA	3	▲ new
23	securityaffairs	3	▲ 2 (67%)
24	Backdoor	3	▲ 2 (67%)
25	Exploit	3	▲ 1 (33%)
26	Microsoft	3	- 0 (0%)
27	ThreatProtection	3	- 0 (0%)
28	Ransomware	3	▲ new
29	Korean	3	▲ new
30	WooCommerce	3	▲ new
31	Update	3	▼ -1 (-33%)
32	North	3	▲ new
33	Crypto	3	▲ new
34	Zoom	3	▲ 2 (67%)
35	AI	2	▲ 1 (50%)
36	account	2	▲ 1 (50%)
37	Python	2	▲ new
38	United States	2	▼ -1 (-50%)
39	Threat	2	- 0 (0%)
40	Follow	2	▲ new
41	exchange	2	▲ new
42	Alert	2	▲ new
43	payment	2	▲ new
44	spyware	2	▲ new
45	intelligence	2	▼ -1 (-50%)
46	realtime	2	▲ new
47	cybercrime	2	- 0 (0%)
48	DFIR	2	▲ new
49	Fools	2	▲ new
50	April	2	▲ new
51	Password	2	- 0 (0%)
52	Google	2	▼ -3 (-150%)
53	SectopRAT	2	▲ new
54	MFA	2	▲ new
55	RAT	2	- 0 (0%)
56	Android	2	▼ -1 (-50%)
57	Ends	2	▲ new
58	Thousands	1	▲ new
59	United	1	▲ new
60	sponsored	1	▲ new
61	IRS	1	▲ new
62	lucky	1	▲ new
63	Gamma	1	▲ new
64	tool	1	▲ new
65	FQDNs	1	▲ new
66	Hijacking	1	▲ new
67	online	1	▲ new
68	Creates	1	▲ new
69	Operation	1	▲ new
70	Browser	1	▼ -3 (-300%)
71	WhatsApp	1	- 0 (0%)
72	Vulnerability	1	▲ new
73	reward	1	▲ new
74	httpstcoMfa	1	▲ new
75	Group	1	- 0 (0%)
76	South Korea	1	▲ new
77	SpyNote	1	▲ new
78	MissAV	1	▲ new
79	devs	1	▲ new
80	Telegram	1	▼ -1 (-100%)
81	toll	1	- 0 (0%)
82	HyperSSL	1	▲ new
83	Quest	1	▲ new
84	Alpine	1	▲ new
85	Responses	1	▲ new
86	Port	1	▲ new
87	Use	1	- 0 (0%)
88	Hackers	1	- 0 (0%)
89	Government	1	▲ new
90	pastehijacking	1	▲ new
91	Education	1	▲ new
92	hybrid	1	▲ new
93	Iran	1	▲ new
94	AndroidSpy	1	▲ new
95	OilRig	1	▲ new
96	real	1	▲ new
97	product	1	▲ new
98	technology	1	▲ new
99	danger	1	▲ new
100	deepfake	1	▲ new

Special keyword group

Top 5

Malware Type

This is the type of malware that is becoming an issue.

Keyword	Average	Label
NetWireRC		4 (20%)
BlackSuit		3 (15%)
Ransomware		3 (15%)
SectopRAT		2 (10%)
RAT		2 (10%)

Attacker & Actors

The status of the attacker or attack group being issued.

Keyword	Average	Label
OilRig		1 (100%)

Technique

This is an attack technique that is becoming an issue.

Keyword	Average	Label
Campaign		12 (27.3%)
Phishing		10 (22.7%)
RCE		4 (9.1%)
hacking		4 (9.1%)
hijack		4 (9.1%)

Country & Company

This is a country or company that is an issue.

Keyword	Average	Label
Kaspersky		5 (15.2%)
Russia		5 (15.2%)
North Korea		4 (12.1%)
Japan		4 (12.1%)
Microsoft		3 (9.1%)

Threat info

Last 5

SNS

(Total : 33)

Total keyword

Malware target Phishing Campaign Kaspersky Attacker Russia Japan Report NetWireRC hacking powershell attack Microsoft hijack Email North Korea Update spyware United States Exploit RCE Android Ransomware RAT BlackSuit payment SectopRAT MFA South Korea Hijacking HyperSSL Telegram China Smishing Binance ClickFix Trojan Ucraina DCRat Rhadamanthys VBScript Remcos Homoglyph ...

No	Title	Date
1	Cyber_OSINT @Cyber_O51NT Cybersecurity researchers warn of a phishing campaign targeting WooCommerce users with a fake security alert that installs backdoors instead of patches, marking a sophisticated evolution of a similar December 2023 threat. #WooCommerce #Cybersecurity https://t.co/31MYAs1qpH	2025.04.28
2	BleepingComputer @BleepinComputer WooCommerce admins targeted by fake security patches that hijack sites - @billtoulas https://t.co/Mfa5hWpjij https://t.co/Mfa5hWpjij	2025.04.26
3	Threat Intelligence @threatintel #ThreatProtection #Phishing campaign targets #Norinchukin #Bank, stealing credentials via fake login pages. Read more: https://t.co/oST1wqfL8h	2025.04.25
4	The Hacker News @TheHackersNews ???? Fake jobs, real danger. North Korean hackers are posing as crypto firms to lure devs into malware traps. ????3 fronts: BlockNovas, Angeloper, SoftGlide ????3 Malware: BeaverTail, InvisibleFerret, OtterCookie ????3 Target: Your wallet, data & trust. Read: https://t.co/oDrtXbH2aS	2025.04.25
5	Cyber_OSINT @Cyber_O51NT Cofense's latest report reveals a hybrid phishing attack that tricks users with fake file deletion reminders and malicious downloads, exploiting trust in legitimate file-sharing services to steal credentials or deliver malware. #CyberSecurity #Phishing https://t.co/4diOFovn56	2025.04.24

News

(Total : 12)

Total keyword

Malware Campaign Criminal target attack Phishing Backdoor Password Email Report RCE intelligence OilRig Iran Education Government Browser Update North Korea WordPress Operation Vulnerability WhatsApp Cloudflare BlackSuit Ransomware Lobshot MFA hacking Facebook Advertising Google hijack Booking Exploit Europe Software

No	Title	Date
1	WooCommerce Users Targeted by Fake Patch Phishing Campaign Deploying Site Backdoors - The Hacker News	2025.04.28
2	North Korean Group Creates Fake Crypto Firms in Job Complex Scam - Malware.News	2025.04.26
3	How to Spot Fake Online Reviews and Protect Yourself from Scams - Malware.News	2025.04.25
4	APT34 Hackers Use Port 8080 for Fake 404 Responses and Shared SSH Keys - Malware.News	2025.04.23
5	“Follow me” to this fake crypto exchange to claim $500 - Malware.News	2025.04.16

Additional information

No	Title	Date
1	FBI Reports ₹1.38 Lakh Crore Loss in 2024, a 33% Surge from 2023 - Malware.News	2025.04.29
2	US intensifies Salt Typhoon crackdown with public info request - Malware.News	2025.04.29
3	Trump moves threaten US cyber defenses, says former CISA director Easterly - Malware.News	2025.04.29
4	Escalating attacks against Ivanti VPN appliances expected - Malware.News	2025.04.29
5	Critical Planet Technology switch vulnerabilities pose total takeover risk - Malware.News	2025.04.29
View only the last 5

No	Title	Date
1	Threat Actors Exploit Fake CAPTCHAs and Cloudflare Turnstile to Distribute LegionLoader - Malware.News	2025.04.07
2	Why we’re no longer doing April Fools’ Day - Malware.News	2025.03.31
3	Malware distributed via fake DeepSeek ads on Google - Malware.News	2025.03.28
4	Threat Actors Use Fake Booking.com Emails to Deceive Hotel Staff and Gain System Access - Malware.News	2025.03.27
5	DeepSeek users targeted with fake sponsored Google ads that deliver malware - Malware.News	2025.03.26
View only the last 5

No data

No	URL	CC	ASN Co	Reporter	Date
1	http://romainthomas.fr/post/android-crackme/crackme-telegram.apk apk Fake telegram	FR	OVH SAS	abus3reports	2024.11.03
2	https://electrum-dash.org/download/electrum-dash-4.1.7.5.exe exe Fake infostealer	GB		ninjacatcher	2024.10.07
3	https://electrum-dash.org/download/electrum-dash-4.1.7.5-x86_64.AppImage exe Fake infostealer	GB		ninjacatcher	2024.10.07
4	https://electrum-dash.org/download/electrum-dash-4.1.7.5.dmg exe Fake infostealer	GB		ninjacatcher	2024.10.07
5	https://adobeacrobat.help/AdobeUpdate.pdf Fake PDF RemoteAdmin			kddx0178318	2024.09.16
View only the last 5

Beta Service, If you select keyword, you can check detailed information.