Cyber Threat Trends

Summary: 2025/04/29 03:01

First reported date: 2014/05/24
Inquiry period : 2025/03/30 03:01 ~ 2025/04/29 03:01 (1 months), 47 search results

전 기간대비 47% 높은 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 file Malware Update Report target 입니다.
악성코드 유형 ShadowPad 도 새롭게 확인됩니다.
공격기술 RCE 도 새롭게 확인됩니다.
기관 및 기업 Government ESET Cisco 도 새롭게 확인됩니다.
기타 Arbitrary WordPress FUD exe Wordfence 등 신규 키워드도 확인됩니다.

* 최근 뉴스기사 Top3:
    ㆍ 2025/04/29 Interesting WordPress Malware Disguised as Legitimate Anti-Malware Plugin
    ㆍ 2025/04/22 Russian organizations targeted by backdoor masquerading as secure networking software updates
    ㆍ 2025/04/22 50,000 WordPress Sites Affected by Arbitrary File Upload Vulnerability in Greenshift WordPress Plugin

Date range button:

First seen:

Last seen:

Keyword

Trend graph by period

Related keyword cloud

Top 100

#	Trend	Count	Comparison
1	file	47	▲ 22 (47%)
2	Malware	18	▲ 6 (33%)
3	Update	14	▲ 11 (79%)
4	Report	12	▲ 9 (75%)
5	target	11	▲ 7 (64%)
6	Exploit	11	▲ 10 (91%)
7	Vulnerability	11	▲ 10 (91%)
8	Campaign	11	▲ 9 (82%)
9	Advertising	11	▲ 6 (55%)
10	RCE	10	▲ new
11	Arbitrary	9	▲ new
12	c&c	8	▲ 5 (63%)
13	attack	8	▲ 4 (50%)
14	intelligence	7	▲ 3 (43%)
15	Microsoft	7	▲ 6 (86%)
16	Windows	7	▲ 5 (71%)
17	IoC	6	▲ 3 (50%)
18	Software	6	▲ 2 (33%)
19	Victim	6	▲ 3 (50%)
20	United States	5	▲ 2 (40%)
21	plugin	5	▲ 4 (80%)
22	Kaspersky	5	▲ 4 (80%)
23	apt	5	▲ 4 (80%)
24	Trojan	5	▲ 3 (60%)
25	ZeroDay	4	▲ 3 (75%)
26	WordPress	4	▲ new
27	Operation	4	▲ 2 (50%)
28	Java	4	▲ 3 (75%)
29	Backdoor	4	▲ 1 (25%)
30	FUD	3	▲ new
31	exe	3	▲ new
32	Government	3	▲ new
33	Password	3	- 0 (0%)
34	hijack	3	▲ 2 (67%)
35	Wordfence	3	▲ new
36	CVSS	3	▲ new
37	Russia	3	▲ 2 (67%)
38	Read	2	▲ new
39	Vite	2	▲ new
40	other	2	▲ new
41	URL	2	▲ new
42	China	2	▲ 1 (50%)
43	name	2	▲ new
44	EDR	2	▲ new
45	Criminal	2	▲ 1 (50%)
46	Remote Code Execution	2	▼ -1 (-50%)
47	Webshell	2	▲ 1 (50%)
48	ESET	2	▲ new
49	Browser	2	▲ 1 (50%)
50	GitHub	2	▼ -2 (-100%)
51	tool	2	▲ 1 (50%)
52	system	2	▲ 1 (50%)
53	code	2	▲ 1 (50%)
54	flaxtyphoon	2	▲ new
55	ShadowPad	2	▲ new
56	Malicious	2	- 0 (0%)
57	Cryptocurrency	2	▲ 1 (50%)
58	Ransomware	2	▼ -3 (-150%)
59	Download	2	▲ 1 (50%)
60	Konni	2	▲ 1 (50%)
61	Email	2	▼ -1 (-50%)
62	C2	2	- 0 (0%)
63	CVE	2	▲ new
64	powershell	2	▲ new
65	Downloader	2	- 0 (0%)
66	Cisco	2	▲ new
67	Supply chain	2	▲ 1 (50%)
68	link	2	▲ new
69	NetWireRC	2	- 0 (0%)
70	likely	2	▲ new
71	RAR	2	▲ new
72	ABB	2	▲ new
73	Cylon	2	▲ new
74	Aspect	2	▲ new
75	webapps	2	▲ new
76	case	2	▲ new
77	Phishing	2	▼ -1 (-50%)
78	version	1	- 0 (0%)
79	FortiGate	1	▲ new
80	MysterySnail	1	▲ new
81	Fortinet	1	▲ new
82	Manager	1	▲ new
83	folder	1	- 0 (0%)
84	VT	1	▲ new
85	infected	1	▲ new
86	RAT	1	- 0 (0%)
87	httpsanalytiwavecomapigetUrl	1	▲ new
88	NortonLifeLock	1	▲ new
89	TinyMCE	1	▲ new
90	CKEditor	1	▲ new
91	NagVis	1	▲ new
92	Triggered	1	▲ new
93	Embedded	1	▲ new
94	WooCommerce	1	▲ new
95	thorscanner	1	▲ new
96	Frames	1	▲ new
97	ThreatProtection	1	▲ new
98	StarProxy	1	▲ new
99	Cobalt Strike	1	▲ new
100	ViriBack	1	▲ new

Special keyword group

Top 5

Malware Type

This is the type of malware that is becoming an issue.

Keyword	Average	Label
Trojan		5 (23.8%)
ShadowPad		2 (9.5%)
Ransomware		2 (9.5%)
Konni		2 (9.5%)
NetWireRC		2 (9.5%)

Attacker & Actors

The status of the attacker or attack group being issued.

Keyword	Average	Label

Technique

This is an attack technique that is becoming an issue.

Keyword	Average	Label
Exploit		11 (20.4%)
Campaign		11 (20.4%)
RCE		10 (18.5%)
apt		5 (9.3%)
Backdoor		4 (7.4%)

Country & Company

This is a country or company that is an issue.

Keyword	Average	Label
Microsoft		7 (21.2%)
United States		5 (15.2%)
Kaspersky		5 (15.2%)
Government		3 (9.1%)
Russia		3 (9.1%)

Threat info

Last 5

SNS

(Total : 23)

Total keyword

apt Malware Campaign Vulnerability RCE IoC c&c ShadowPad Konni Stealer Password Proofpoint CVE botnet Linux ZeroDay Exploit Downloader target Windows Update NetWireRC Attacker DCRat powershell Rhadamanthys VBScript Phishing GootLoader Java Email Targeting C2 Backdoor Report ...

No	Title	Date
1	MalwareHunterTeam @malwrhunterteam Other filenames seen: Evidence File april.exe" "Attachment_Harassment evidence april.exe" "Medical Records 2025 april.exe" "Medical Report scan april.exe" https://t.co/mRU4VMIMP8	2025.04.28
2	MalwareHunterTeam @malwrhunterteam @g0njxa @ViriBack The "botnet" file it downloads: https://t.co/uLMwRUW9Yr	2025.04.25
3	Dark Web Informer - Cyber Threat Intelligence @DarkWebInformer ????Linux File Types https://t.co/cJgWiGL7lH	2025.04.23
4	Dark Web Informer - Cyber Threat Intelligence @DarkWebInformer ???? SSH Brute-Force Tool with File Grabber & Host Enumeration Released A threat actor has published a Python-based SSH bruteforce/sprayer script that includes optional host enumeration and file-exfiltration functionality. ???? Language: Python 3.7+ ???? Modules used: asyncssh, https://t.co/7	2025.04.18
5	MalwareHunterTeam @malwrhunterteam "NetService.bat": 30658f37382d13571c5378aab6917ed640b2cf4eba8724472ce652c84aae07c2 Another case when the file is FUD on VT for the vendors, but there is @thor_scanner comment... and not only 1 comment, but 5 comments. ????‍♂️ https://t.co/D8WpUItVF6	2025.04.18

News

(Total : 24)

Total keyword

Malware Attacker Update Report Advertising target Exploit Vulnerability attack RCE intelligence Microsoft Campaign Victim Windows Software c&c Kaspersky plugin United States Trojan WordPress IoC Operation Government Backdoor Russia ZeroDay hijack Java CVSS ESET China Remote Code Execution Criminal Webshell Cisco Supply chain Password Browser GitHub Cryptocurrency EDR Ransomware MUSTANG PANDA Cobalt Strike hacking TONESHELL RAT NetWireRC Zscaler UNIX Phishing Email Google C2 DYEPACK Europe keylogger powershell Takedown Clipbanker Telegram SMB ...

No	Title	Date
1	Interesting WordPress Malware Disguised as Legitimate Anti-Malware Plugin - Malware.News	2025.04.29
2	SAP Confirms Critical NetWeaver Flaw Amid Suspected Zero-Day Exploitation by Hackers - The Hacker News	2025.04.25
3	Russian organizations targeted by backdoor masquerading as secure networking software updates - Malware.News	2025.04.22
4	[local] tar-fs 3.0.0 - Arbitrary File Write/Overwrite - Exploit-DB.com	2025.04.22
5	50,000 WordPress Sites Affected by Arbitrary File Upload Vulnerability in Greenshift WordPress Plugin - Malware.News	2025.04.22

Additional information

No	Title	Date
1	FBI Reports ₹1.38 Lakh Crore Loss in 2024, a 33% Surge from 2023 - Malware.News	2025.04.29
2	US intensifies Salt Typhoon crackdown with public info request - Malware.News	2025.04.29
3	Trump moves threaten US cyber defenses, says former CISA director Easterly - Malware.News	2025.04.29
4	Escalating attacks against Ivanti VPN appliances expected - Malware.News	2025.04.29
5	Critical Planet Technology switch vulnerabilities pose total takeover risk - Malware.News	2025.04.29
View only the last 5

No	Title	Date
1	Interesting WordPress Malware Disguised as Legitimate Anti-Malware Plugin - Malware.News	2025.04.29
2	Russian organizations targeted by backdoor masquerading as secure networking software updates - Malware.News	2025.04.22
3	Phishing attacks leveraging HTML code inside SVG files - Malware.News	2025.04.21
4	Phishing attacks leveraging HTML code inside SVG files - Malware.News	2025.04.21
5	IronHusky updates the forgotten MysterySnail RAT to target Russia and Mongolia - Malware.News	2025.04.17
View only the last 5

No data

Beta Service, If you select keyword, you can check detailed information.