Cyber Threat Trends

Summary: 2025/05/01 14:14

First reported date: 2022/06/24
Inquiry period : 2025/04/01 14:14 ~ 2025/05/01 14:14 (1 months), 39 search results

전 기간대비 31% 높은 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 Qilin Ransomware Victim Alert DarkWeb 입니다.
공격기술 RCE hijack Stealer 도 새롭게 확인됩니다.
기관 및 기업 USA South Korea Italy Singapore India Russia Kaspersky France Canada 도 새롭게 확인됩니다.
기타 health SK RaaS Elementary Falls 등 신규 키워드도 확인됩니다.

* 최근 뉴스기사 Top3:
    ㆍ 2025/04/30 RansomHub Went Dark April 1; Affiliates Fled to Qilin, DragonForce Claimed Control
    ㆍ 2025/04/13 SK.com allegedly hacked by Qilin
    ㆍ 2025/04/11 Qilin takes credit for SK Group compromise

참고로 동일한 그룹의 악성코드 타입은 WannaCry Sodinokibi Phobos 등 79개 종이 확인됩니다.

Date range button:

First seen:

Last seen:

Keyword

Trend graph by period

Related keyword cloud

Top 100

#	Trend	Count	Comparison
1	Qilin	39	▲ 12 (31%)
2	Ransomware	29	▲ 4 (14%)
3	Victim	27	▲ 14 (52%)
4	Alert	20	▲ 7 (35%)
5	DarkWeb	13	▲ 10 (77%)
6	group	12	▲ 7 (58%)
7	USA	4	▲ new
8	United States	4	▲ 3 (75%)
9	Malware	3	▼ -2 (-67%)
10	attack	3	▼ -3 (-100%)
11	dark	2	▲ 1 (50%)
12	South Korea	2	▲ new
13	Report	2	- 0 (0%)
14	health	2	▲ new
15	RCE	2	▲ new
16	SK	2	▲ new
17	RaaS	2	▲ new
18	hacking	2	- 0 (0%)
19	Inc	2	▲ 1 (50%)
20	Elementary	1	▲ new
21	Falls	1	▲ new
22	School	1	▲ new
23	Rock	1	▲ new
24	UNITED	1	▲ new
25	wholesaler	1	▲ new
26	District	1	▲ new
27	May	1	▲ new
28	Italian	1	▲ new
29	Trust	1	▲ new
30	Italy	1	▲ new
31	Boston	1	▲ new
32	CAPS	1	▲ new
33	DFL	1	▲ new
34	payment	1	▲ new
35	Business	1	▲ new
36	Penderels	1	▲ new
37	SoloVue	1	▲ new
38	Whitley	1	▲ new
39	SRL	1	▲ new
40	World	1	▲ new
41	Conveyor	1	▲ new
42	Interior	1	▲ new
43	Oak	1	▲ new
44	Mossy	1	▲ new
45	Went	1	▲ new
46	April	1	▲ new
47	RansomHub	1	▲ new
48	Operation	1	▲ new
49	Singapore	1	▲ new
50	Design	1	▲ new
51	Cruz	1	▲ new
52	Automation	1	▲ new
53	De	1	▲ new
54	site	1	▲ new
55	web	1	▲ new
56	empire	1	▲ new
57	RansomHubs	1	▲ new
58	Engineering	1	▲ new
59	Leasing	1	▲ new
60	Matrix	1	▲ new
61	Industrial	1	▲ new
62	India	1	▲ new
63	Michelson	1	▲ new
64	Parrish	1	▲ new
65	Seven	1	▲ new
66	investment	1	▲ new
67	MWNEWS	1	▲ new
68	own	1	▲ new
69	FEELFOUR	1	▲ new
70	behalf	1	▲ new
71	Devman	1	▲ new
72	compromise	1	▲ new
73	Russia	1	▲ new
74	Kaspersky	1	▲ new
75	Names	1	▲ new
76	FOUR	1	▲ new
77	France	1	▲ new
78	prominent	1	▲ new
79	Doumen	1	▲ new
80	Caliendo	1	▲ new
81	Gerald	1	▲ new
82	Sophos	1	▲ new
83	MSP	1	▲ new
84	spearphish	1	▲ new
85	ScreenConnect	1	▲ new
86	target	1	▲ new
87	FEEL	1	▲ new
88	Spain	1	- 0 (0%)
89	Canada	1	▲ new
90	operator	1	▲ new
91	Lending	1	▲ new
92	Dominion	1	▲ new
93	LLC	1	▲ new
94	Realty	1	▲ new
95	MDR	1	▲ new
96	Update	1	▲ new
97	hijack	1	▲ new
98	Stealer	1	▲ new
99	shadowy	1	▲ new
100	AccessSMT	1	▲ new

Special keyword group

Top 5

Malware Type

This is the type of malware that is becoming an issue.

Keyword	Average	Label
Ransomware		29 (96.7%)
랜섬웨어		1 (3.3%)

Attacker & Actors

The status of the attacker or attack group being issued.

Keyword	Average	Label
Qilin		39 (100%)

Technique

This is an attack technique that is becoming an issue.

Keyword	Average	Label
RCE		2 (33.3%)
hacking		2 (33.3%)
hijack		1 (16.7%)
Stealer		1 (16.7%)

Country & Company

This is a country or company that is an issue.

Keyword	Average	Label
USA		4 (21.1%)
United States		4 (21.1%)
South Korea		2 (10.5%)
Italy		1 (5.3%)
Singapore		1 (5.3%)

Malware Family

Top 5

A malware family is a group of applications with similar attack techniques.
In this trend, it is classified into Ransomware, Stealer, RAT or Backdoor, Loader, Botnet, Cryptocurrency Miner.

Threat info

Last 5

SNS

(Total : 35)

Total keyword

Qilin Ransomware Victim DarkWeb United States USA Italy payment RCE India Spain RaaS France 랜섬웨어 Canada Stealer attack Update hijack AhnLab South Korea hacking Report

No	Title	Date
1	FalconFeeds.io @FalconFeedsio ???? Ransomware Alert: Qilin ransomware group has added five new victims to their dark web portal: - Rock Falls Elementary School District 13 ???????? -Boston Conveyor & Automation ???????? -De la Cruz Interior Design ???????? - Mossy Oak ???????? -DFL S.r.l. ???????? https://t.co/w5PZYRXPQc	2025.04.30
2	The Hacker News @TheHackersNews ???? RansomHub's empire just vanished. After stealing data from 200+ victims, its dark web site mysteriously went offline on April 1, 2025—triggering panic among affiliates. Qilin's leaks doubled. DragonForce claims a takeover. ???? Read More: https://t.co/SabjfSGS9I	2025.04.30
3	Dark Web Informer - Cyber Threat Intelligence @DarkWebInformer ???????????? Rock Falls Elementary School District 13 falls victim to Qilin Ransomware Samples: Scanned Passports, A Master Product & Services Agreement, An internet service proposal letter, More... https://t.co/TALru80PiS	2025.04.30
4	Dark Web Informer - Cyber Threat Intelligence @DarkWebInformer 5/5 ???? Boston Conveyor & Automation (USA ????????) Industrial automation company BCA breached by Qilin. ???? Financials and internal communications leaked ???? 47 GB stolen ???? bostonconveyorandautomation[.com \| Claimed April 30, 2025 https://t.co/BXbR5tdT39	2025.04.30
5	Dark Web Informer - Cyber Threat Intelligence @DarkWebInformer 4/5 ???? De la Cruz Interior Design (USA ????????) Architecture firm De la Cruz Interior Design hit by Qilin. ???? Blueprints and client documents exposed ???? 91 GB stolen ???? dlcid[.com \| Claimed April 30, 2025 https://t.co/OrWlacN3aG	2025.04.30

News

(Total : 4)

Total keyword

Qilin Malware attack Ransomware hacking RaaS Operation Singapore RCE DarkWeb MDR South Korea Russia Report Kaspersky target

No	Title	Date
1	RansomHub Went Dark April 1; Affiliates Fled to Qilin, DragonForce Claimed Control - The Hacker News	2025.04.30
2	SK.com allegedly hacked by Qilin - Malware.News	2025.04.13
3	Qilin takes credit for SK Group compromise - Malware.News	2025.04.11
4	Qilin affiliates spear-phish MSP ScreenConnect admin, targeting customers downstream - Malware.News	2025.04.01

Additional information

No	Title	Date
1	Tesla Board Started Search for Elon Musk’s Successor, WSJ Says - Bloomberg Technology	2025.05.01
2	Alleged ‘Scattered Spider’ Member Extradited to U.S - Malware.News	2025.05.01
3	Salt Typhoon hacks ‘a wake up call’ to secure telecom services, lawmakers say - Malware.News	2025.05.01
4	Watchdog cites potential improvements for State’s cyber diplomacy office amid agency reorg - Malware.News	2025.05.01
5	Microsoft Posts Strong Revenue Growth on Cloud Unit Expansion - Bloomberg Technology	2025.05.01
View only the last 5

No	Title	Date
1	Qilin takes credit for SK Group compromise - Malware.News	2025.04.11
2	Ransomware landscape dominated by RansomHub - Malware.News	2024.11.07
3	Ransomware Qilin klaut Log-in-Daten aus Google Chrome - IT Sicherheitsnews	2024.08.28
4	Ransomware: Qilin steihlt Zugangsdaten aus Google Chrome - IT Sicherheitsnews	2024.08.28
5	Qilin Ransomware Attack Targets Credentials Stored in Chrome - Malware.News	2024.08.23
View only the last 5

No data

No	URL	CC	ASN Co	Reporter	Date
1	http://83.97.73.202/system32.exe APT Qilin Ransomware	DE		abus3reports	2024.08.04

Beta Service, If you select keyword, you can check detailed information.