Cyber Threat Trends

Summary: 2025/04/28 20:20

First reported date: 2013/10/31
Inquiry period : 2025/04/21 20:20 ~ 2025/04/28 20:20 (7 days), 6 search results

전 기간대비 -67% 낮은 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 Alleged DarkWeb 입니다.
악성코드 유형 Rhysida Cryptocurrency Miner Astasia Vawtrak 도 새롭게 확인됩니다.
공격자 Storm-1977 도 새롭게 확인됩니다.
공격기술 Social Engineering Backdoor 도 새롭게 확인됩니다.
기관 및 기업 United Kingdom ThreatMon Microsoft Israel Iran Google Mandiant 도 새롭게 확인됩니다.
기타 Breach Victim MDB Redbuscom ITWorker 등 신규 키워드도 확인됩니다.

* 최근 뉴스기사 Top3:
ㆍ 2025/04/23 Iran-Linked Hackers Target Israel with MURKYTOUR Malware via Fake Job Campaign

Date range button:

First seen:

Last seen:

Keyword

Trend graph by period

Related keyword cloud

Top 100

#	Trend	Count	Comparison
1	actor	6	▼ -4 (-67%)
2	threat	4	▼ -5 (-125%)
3	Breach	2	▲ new
4	Alleged	2	▲ 1 (50%)
5	Report	2	▼ -2 (-100%)
6	Victim	2	▲ new
7	DarkWeb	2	▲ 1 (50%)
8	MDB	1	▲ new
9	Redbuscom	1	▲ new
10	United Kingdom	1	▲ new
11	Ransomware	1	- 0 (0%)
12	Rhysida	1	▲ new
13	ITWorker	1	▲ new
14	ThreatMon	1	▲ new
15	threatintel	1	▲ new
16	Microsoft	1	▲ new
17	Storm	1	▲ new
18	AzureCheckerexe	1	▲ new
19	Password	1	- 0 (0%)
20	attack	1	▼ -1 (-100%)
21	Cryptocurrency Miner	1	▲ new
22	Education	1	▲ new
23	intelligence	1	▼ -2 (-200%)
24	Data	1	▲ new
25	Astasia	1	▲ new
26	Israel	1	▲ new
27	CTI	1	- 0 (0%)
28	Vawtrak	1	▲ new
29	Browser	1	▲ new
30	North Korea	1	- 0 (0%)
31	Malware	1	- 0 (0%)
32	Social Engineering	1	▲ new
33	Campaign	1	▼ -1 (-100%)
34	Iran	1	▲ new
35	DPRK	1	- 0 (0%)
36	Google	1	▲ new
37	Mandiant	1	▲ new
38	Backdoor	1	▲ new
39	target	1	▼ -1 (-100%)
40	Operation	1	▲ new
41	MURKYTOUR	1	▲ new
42	UNC	1	▲ new
43	Storm-1977	1	▲ new

Special keyword group

Top 5

Malware Type

This is the type of malware that is becoming an issue.

Keyword	Average	Label
Ransomware		1 (20%)
Rhysida		1 (20%)
Cryptocurrency Miner		1 (20%)
Astasia		1 (20%)
Vawtrak		1 (20%)

Attacker & Actors

The status of the attacker or attack group being issued.

Keyword	Average	Label
Storm-1977		1 (100%)

Technique

This is an attack technique that is becoming an issue.

Keyword	Average	Label
Social Engineering		1 (33.3%)
Campaign		1 (33.3%)
Backdoor		1 (33.3%)

Country & Company

This is a country or company that is an issue.

Keyword	Average	Label
United Kingdom		1 (11.1%)
ThreatMon		1 (11.1%)
Microsoft		1 (11.1%)
Israel		1 (11.1%)
North Korea		1 (11.1%)

Threat info

Last 5

SNS

(Total : 5)

Total keyword

Report Victim DarkWeb intelligence Microsoft Password attack Cryptocurrency Miner Education ThreatMon Rhysida Ransomware DPRK United Kingdom Astasia North Korea Browser Vawtrak Storm-1977

No	Title	Date
1	Cyber_OSINT @Cyber_O51NT Microsoft reported that threat actor Storm-1977 has been using AzureChecker.exe for password spraying attacks against education sector cloud tenants, deploying over 200 crypto mining containers in the past year. #CyberSecurity #ThreatIntel https://t.co/JzdIOuctZU	2025.04.27
2	ThreatMon @MonThreat Actor : rhysida Victim : MDB Date : 2025-04-26 18:03:07 UTC +3 According to #DarkWeb #Ransomware activity detected by the ThreatMon Threat Intelligence Team. The “#rhysida” Ransomware group has added MDB to its victims.	2025.04.26
3	Dark Web Informer - Cyber Threat Intelligence @DarkWebInformer ???????????? Alleged Breach: Redbus.com 1.2M+ Users Exposed A threat actor has claimed responsibility for breaching Redbus.com in April 2025. The breached company is reportedly based in the United Kingdom, with 60 employees and a revenue of approximately $14 million. ???? Victim: https://t.co/TANu	2025.04.25
4	ThreatMon @MonThreat Alleged Data Breach of breachfed.fi A threat actor on a dark web forum claims to have breached breachfed.fi, a domain allegedly associated with the previously shut-down breachforums.st, which was closed on April 15th. The threat actor, identified as Anastasia, is behind https://t.co/JQD7qqJU0F	2025.04.24
5	lazarusholic @lazarusholic "How do you catch a DPRK actor you ask" published by @browsercookies. #ITWorker, #DPRK, #CTI https://t.co/qFROq8Cfdx	2025.04.22

News

(Total : 1)

Total keyword

Malware Social Engineering Campaign Israel Iran Google Mandiant Backdoor target Operation

No	Title	Date
1	Iran-Linked Hackers Target Israel with MURKYTOUR Malware via Fake Job Campaign - The Hacker News	2025.04.23

Additional information

No	Title	Date
1	Top Tier Target \| What It Takes to Defend a Cybersecurity Company from Today’s Adversaries - Malware.News	2025.04.28
2	28th April – Threat Intelligence Report - Malware.News	2025.04.28
3	Navigating Through The Fog - Malware.News	2025.04.28
4	Huawei Set to Test Powerful AI Chip to Rival Nvidia’s, WSJ Says - Bloomberg Technology	2025.04.28
5	Gamers Beware! New Attack Targets Gamers to Deploy AgeoStealer Malware - Malware.News	2025.04.26
View only the last 5

No	Title	Date
1	Iran-Linked Hackers Target Israel with MURKYTOUR Malware via Fake Job Campaign - The Hacker News	2025.04.23
2	Iran-Linked Hackers Target Israel with MURKYTOUR Malware via Fake Job Campaign - The Hacker News	2025.04.23
3	Fortinet 0-Day, Spotify Checker Shared, and STX Leak Campaign - Malware.News	2025.04.15
4	Fortinet 0-Day, Spotify Checker Shared, and STX Leak Campaign - Malware.News	2025.04.15
5	ViperSoftX Malware Distributed by Arabic-Speaking Threat Actor - Malware.News	2025.04.10
View only the last 5

No data

Beta Service, If you select keyword, you can check detailed information.