Cyber Threat Trends

Summary: 2025/04/29 21:01

First reported date: 2012/10/18
Inquiry period : 2025/04/22 21:01 ~ 2025/04/29 21:01 (7 days), 31 search results

전 기간대비 -6% 낮은 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 Malware RCE attack Sale Exploit 입니다.
악성코드 유형 CACTUS IcedID RATel 도 새롭게 확인됩니다.
공격기술 hacking Social Engineering 도 새롭게 확인됩니다.
기관 및 기업 Cisco France USA United Kingdom UK 도 새롭게 확인됩니다.
기타 ToyMaker eCommerce remote Update Talos 등 신규 키워드도 확인됩니다.

* 최근 뉴스기사 Top3:
    ㆍ 2025/04/28 Zero Trust Best Practices for Enterprises and Small Businesses
    ㆍ 2025/04/26 ToyMaker Uses LAGTOY to Sell Access to CACTUS Ransomware Gangs for Double Extortion
    ㆍ 2025/04/25 Zoom attack tricks victims into allowing remote access to install malware and steal money

Date range button:

First seen:

Last seen:

Keyword

Trend graph by period

Related keyword cloud

Top 100

#	Trend	Count	Comparison
1	Access	31	▼ -2 (-6%)
2	Alleged	13	▼ -1 (-8%)
3	Malware	10	▲ 3 (30%)
4	RCE	6	▲ 1 (17%)
5	attack	6	▲ 2 (33%)
6	Sale	6	▲ 1 (17%)
7	CACTUS	4	▲ new
8	Exploit	4	▲ 3 (75%)
9	ToyMaker	4	▲ new
10	United States	3	▼ -5 (-167%)
11	Victim	3	▲ 2 (67%)
12	eCommerce	3	▲ new
13	remote	3	▲ new
14	Spain	3	▲ 2 (67%)
15	Report	3	▼ -2 (-67%)
16	Phishing	3	▲ 2 (67%)
17	Ransomware	3	▲ 2 (67%)
18	initial	3	- 0 (0%)
19	Cisco	2	▲ new
20	MFA	2	▲ 1 (50%)
21	Microsoft	2	- 0 (0%)
22	Vulnerability	2	▲ 1 (50%)
23	Update	2	▲ new
24	target	2	- 0 (0%)
25	Admin	2	▼ -1 (-50%)
26	Talos	2	▲ new
27	Zoom	2	▲ new
28	RDP	2	▼ -2 (-100%)
29	plugin	2	▲ new
30	Corporate	2	▲ new
31	Unidentified	2	▲ 1 (50%)
32	Advertising	2	- 0 (0%)
33	Password	2	- 0 (0%)
34	listing	1	▲ new
35	Domain	1	▼ -1 (-100%)
36	hacking	1	▲ new
37	NetWeaver	1	▲ new
38	securityaffairs	1	▲ new
39	SAP	1	▲ new
40	CVSS	1	- 0 (0%)
41	broker	1	- 0 (0%)
42	ZeroDay	1	▲ new
43	LAGTOY	1	▲ new
44	IAB	1	▲ new
45	Leak	1	▲ new
46	Sony	1	▲ new
47	France	1	▲ new
48	FTP	1	▲ new
49	Zero Trust	1	▼ -1 (-100%)
50	NetWireRC	1	- 0 (0%)
51	ResolverRAT	1	▲ new
52	Trojan	1	- 0 (0%)
53	sophisticated	1	▲ new
54	USA	1	▲ new
55	Database	1	▲ new
56	Service	1	▲ new
57	Tax	1	▲ new
58	Trust	1	- 0 (0%)
59	Zero	1	- 0 (0%)
60	Software	1	▼ -3 (-300%)
61	someone	1	▲ new
62	stealthy	1	▲ new
63	valid	1	▲ new
64	PGP	1	▲ new
65	signed	1	▲ new
66	Agent	1	▲ new
67	Optimization	1	▲ new
68	Conditional	1	▲ new
69	Server	1	- 0 (0%)
70	Linux	1	▲ new
71	tamper	1	▲ new
72	WordPress	1	▼ -1 (-100%)
73	hackerforhire	1	▲ new
74	CVE	1	▲ new
75	Multiple	1	▼ -1 (-100%)
76	RackStatic	1	▲ new
77	Mike	1	▲ new
78	IoC	1	▲ new
79	Campaign	1	- 0 (0%)
80	Russia	1	- 0 (0%)
81	Ucraina	1	- 0 (0%)
82	Kaspersky	1	- 0 (0%)
83	Social Engineering	1	▲ new
84	IcedID	1	▲ new
85	Falcon	1	▲ new
86	Privileged	1	▲ new
87	management	1	▲ new
88	Windows	1	- 0 (0%)
89	identity	1	▼ -1 (-100%)
90	simple	1	▲ new
91	Magento	1	▲ new
92	PrestaShop	1	▲ new
93	RealTime	1	▲ new
94	phone	1	▲ new
95	United Kingdom	1	▲ new
96	UK	1	▲ new
97	Shop	1	▲ new
98	RATel	1	▲ new
99	WhatsApp	1	▲ new
100	databreach	1	▲ new

Special keyword group

Top 5

Malware Type

This is the type of malware that is becoming an issue.

Keyword	Average	Label
CACTUS		4 (33.3%)
Ransomware		3 (25%)
NetWireRC		1 (8.3%)
Trojan		1 (8.3%)
IcedID		1 (8.3%)

Attacker & Actors

The status of the attacker or attack group being issued.

Keyword	Average	Label

Technique

This is an attack technique that is becoming an issue.

Keyword	Average	Label
RCE		6 (35.3%)
Exploit		4 (23.5%)
Phishing		3 (17.6%)
hacking		1 (5.9%)
Campaign		1 (5.9%)

Country & Company

This is a country or company that is an issue.

Keyword	Average	Label
United States		3 (14.3%)
Spain		3 (14.3%)
Cisco		2 (9.5%)
Microsoft		2 (9.5%)
France		1 (4.8%)

Threat info

Last 5

SNS

(Total : 25)

Total keyword

Exploit RCE Malware Spain CACTUS United States Cisco Vulnerability Ransomware attack plugin Advertising Report WordPress Microsoft Password Linux France Magento Update target Phishing NetWireRC Trojan USA ZeroDay hacking UK United Kingdom payment Backdoor CVE Attacker CVSS South Korea RAT

No	Title	Date
1	Cyber_OSINT @Cyber_O51NT A sophisticated remote access trojan named ResolverRAT is reportedly targeting the healthcare and pharmaceutical sectors globally through localized phishing, employing advanced techniques to steal sensitive data. #cybersecurity #malware https://t.co/DA0CJC0X02	2025.04.29
2	Microsoft Threat Intelligence @MsftSecIntel The Conditional Access Optimization Agent in Microsoft Entra, on the other hand, monitors for new users or apps not covered by existing policies, identifies necessary updates to close security gaps, and recommends quick fixes for identity teams to apply.	2025.04.28
3	Dark Web Informer - Cyber Threat Intelligence @DarkWebInformer ????????????USA Tax Service Database Access for Sale A threat actor is offering access to a US-based Tax Service database containing highly sensitive financial and personal records. ???? Access Type: Database ???? Client Data: ???? ~1600 clients ???? ~450 IDs (Driver’s License, Passport, https:/	2025.04.28
4	Dark Web Informer - Cyber Threat Intelligence @DarkWebInformer The signed PGP is valid, so someone has access to it. https://t.co/irfLxkd9aY	2025.04.28
5	Dark Web Informer - Cyber Threat Intelligence @DarkWebInformer ???? Alleged Linux Server Access for Sale A threat actor is offering access to a Linux-based server linked to an insurance company in Latin America. ???? Access Type: Linux ???? Revenue: 500,000,000$ ???? Sector: Insurance ???? Price: $600 https://t.co/Ep8tTRitvb	2025.04.27

News

(Total : 6)

Total keyword

Malware attack Victim Phishing MFA Attacker RCE target Operation conference CACTUS Ransomware Zero Trust Update Software Password Europe Education Government Ucraina IcedID Social Engineering Kaspersky Report Russia Email Campaign IoC Microsoft RATel Windows WhatsApp Browser CrowdStrike

No	Title	Date
1	Zero Trust Best Practices for Enterprises and Small Businesses - Malware.News	2025.04.28
2	ToyMaker Uses LAGTOY to Sell Access to CACTUS Ransomware Gangs for Double Extortion - The Hacker News	2025.04.26
3	Zoom attack tricks victims into allowing remote access to install malware and steal money - Malwarebytes Labs	2025.04.25
4	Zoom attack tricks victims into allowing remote access to install malware and steal money - Malwarebytes Labs	2025.04.25
5	Phishing for Codes: Russian Threat Actors Target Microsoft 365 OAuth Workflows - Malware.News	2025.04.23

Additional information

No	Title	Date
1	What privacy? Perplexity wants your data, builds browser to track you and serve ads - Malware.News	2025.04.29
2	Foldable Phones Need Better Software to Drive Wider Interest - Bloomberg Technology	2025.04.29
3	Year in Review: AI based threats - Malware.News	2025.04.29
4	Spotify’s Subscriber Count Climbs 12%, Beating Forecast - Bloomberg Technology	2025.04.29
5	Microsoft and Amazon Capex in Focus Amid Potential AI Pullback - Bloomberg Technology	2025.04.29
View only the last 5

No	Title	Date
1	Phishing for Codes: Russian Threat Actors Target Microsoft 365 OAuth Workflows - Malware.News	2025.04.23
2	Phishing for Codes: Russian Threat Actors Target Microsoft 365 OAuth Workflows - Malware.News	2025.04.23
3	CrowdStrike Falcon Privileged Access Unifies Identity Protection Across Critical Environments - Malware.News	2025.04.22
4	Kimsuky Exploits BlueKeep RDP Vulnerability to Breach Systems in South Korea and Japan - The Hacker News	2025.04.22
5	Kimsuky Exploits BlueKeep RDP Vulnerability to Breach Systems in South Korea and Japan - The Hacker News	2025.04.22
View only the last 5

No data

Beta Service, If you select keyword, you can check detailed information.