Cyber Threat Trends

Summary: 2025/04/28 21:37

First reported date: 2015/09/03
Inquiry period : 2025/04/21 21:37 ~ 2025/04/28 21:37 (7 days), 14 search results

전 기간대비 -36% 낮은 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 Malware CVE Advertising ZeroDay 입니다.
악성코드 유형 Lobshot RATel Ransomware Clop 도 새롭게 확인됩니다.
공격자 LOTUS PANDA 도 새롭게 확인됩니다.
공격기술 Phishing hacking Webshell 도 새롭게 확인됩니다.
기관 및 기업 Commvault Check Point China Russia Ucraina Kaspersky Zscaler 도 새롭게 확인됩니다.
기타 RackStatic Command ruby WhatsApp GitHub 등 신규 키워드도 확인됩니다.

System은 컴퓨터 시스템 보안 취약점의 심각도를 평가하기 위한 무료 공개 산업 표준입니다. CVSS는 취약성에 심각도 점수를 할당하여 대응자가 위협에 따라 대응 및 리소스의 우선 순위를 지정할 수 있도록 합니다.

* 최근 뉴스기사 Top3:
    ㆍ 2025/04/28 28th April – Threat Intelligence Report
    ㆍ 2025/04/28 Hackers Exploit Critical Craft CMS Flaws; Hundreds of Servers Likely Compromised
    ㆍ 2025/04/25 Researchers Identify Rack::Static Vulnerability Enabling Data Breaches in Ruby Servers

Date range button:

First seen:

Last seen:

Keyword

Trend graph by period

Related keyword cloud

Top 100

#	Trend	Count	Comparison
1	CVSS	14	▼ -5 (-36%)
2	Vulnerability	13	▼ -5 (-38%)
3	Exploit	10	- 0 (0%)
4	Update	7	- 0 (0%)
5	RCE	5	▼ -4 (-80%)
6	Malware	5	▲ 1 (20%)
7	CVE	5	▲ 1 (20%)
8	Advertising	4	▲ 1 (25%)
9	attack	4	▼ -1 (-25%)
10	Report	4	▼ -1 (-25%)
11	critical	4	▼ -1 (-25%)
12	ZeroDay	3	▲ 2 (67%)
13	Commvault	3	▲ new
14	Alert	3	- 0 (0%)
15	RackStatic	2	▲ new
16	Command	2	▲ new
17	ruby	2	▲ new
18	WhatsApp	2	▲ new
19	GitHub	2	▲ new
20	Center	2	▲ new
21	Operation	2	- 0 (0%)
22	target	2	▼ -2 (-100%)
23	SAP	2	▲ new
24	CMS	1	▲ new
25	tamper	1	▲ new
26	access	1	- 0 (0%)
27	Identify	1	▲ new
28	Enabling	1	▲ new
29	v3	1	▲ new
30	score	1	▲ new
31	Craft	1	▲ new
32	Browser	1	▲ new
33	Flaws	1	- 0 (0%)
34	Lobshot	1	▲ new
35	Check Point	1	▲ new
36	RATel	1	▲ new
37	DarkWeb	1	▲ new
38	Ransomware	1	▲ new
39	China	1	▲ new
40	Microsoft	1	▼ -1 (-100%)
41	Victim	1	- 0 (0%)
42	LOTUS PANDA	1	▲ new
43	Cryptocurrency	1	▲ new
44	Campaign	1	▼ -2 (-200%)
45	Russia	1	▲ new
46	Ucraina	1	▲ new
47	Chrome	1	▲ new
48	Kaspersky	1	▲ new
49	Clop	1	▲ new
50	Phishing	1	▲ new
51	HardenRunner	1	▲ new
52	databreach	1	▲ new
53	hacking	1	▲ new
54	intelligence	1	▼ -1 (-100%)
55	WordPress	1	- 0 (0%)
56	Webshell	1	▲ new
57	plugin	1	- 0 (0%)
58	file	1	- 0 (0%)
59	Wordfence	1	- 0 (0%)
60	Greenshift	1	▲ new
61	Cisco	1	- 0 (0%)
62	IoT	1	▲ new
63	FortiGuard	1	▲ new
64	available	1	▲ new
65	ErlangOTP	1	- 0 (0%)
66	Zscaler	1	▲ new
67	code	1	▲ new
68	Hackers	1	▲ new
69	function	1	▲ new
70	Langflow	1	▲ new
71	exec	1	▲ new
72	endpoint	1	▲ new
73	Linux	1	▼ -1 (-100%)
74	Ubuntu	1	▲ new
75	DNS	1	- 0 (0%)
76	Software	1	▼ -2 (-200%)
77	Docker	1	- 0 (0%)
78	Supply chain	1	- 0 (0%)
79	user	1	▲ new
80	flaw	1	▼ -3 (-300%)
81	SSRF	1	▲ new
82	Education	1	▲ new

Special keyword group

Top 5

Malware Type

This is the type of malware that is becoming an issue.

Keyword	Average	Label
Lobshot		1 (25%)
RATel		1 (25%)
Ransomware		1 (25%)
Clop		1 (25%)

Attacker & Actors

The status of the attacker or attack group being issued.

Keyword	Average	Label
LOTUS PANDA		1 (100%)

Technique

This is an attack technique that is becoming an issue.

Keyword	Average	Label
Exploit		10 (52.6%)
RCE		5 (26.3%)
Campaign		1 (5.3%)
Phishing		1 (5.3%)
hacking		1 (5.3%)

Country & Company

This is a country or company that is an issue.

Keyword	Average	Label
Commvault		3 (27.3%)
Check Point		1 (9.1%)
China		1 (9.1%)
Microsoft		1 (9.1%)
Russia		1 (9.1%)

Threat info

Last 5

SNS

(Total : 5)

Total keyword

CVSS Vulnerability Exploit CVE Report Attacker Update Advertising Commvault SSRF RCE ZeroDay

No	Title	Date
1	Hunter @HunterMapping ????Alert???? CVE-2025-31324(CVSS v3 score: 10.0):Critical SAP NetWeaver Zero-Day Vulnerability ????EXP : https://t.co/rffC5FzOf3 ????23K+ Services are found on the https://t.co/ysWb28Crld yearly. ????Hunter Link:https://t.co/GaOcRgCFh8 ????Query HUNTER : https://t.co/q9rtuGgxk7="SAP https://t.co/LH	2025.04.27
2	The Hacker News @TheHackersNews ???? Critical SAP Exploit Alert! Hackers are abusing a flaw in SAP NetWeaver to drop JSP web shells—even fully patched systems are hit. Likely tied to CVE-2025-31324 (CVSS 10.0) \| Allows unauthenticated file uploads via /metadatauploader. Details → https://t.co/uWvH68J5dK	2025.04.25
3	Cyber_OSINT @Cyber_O51NT Cybersecurity researchers reported three vulnerabilities in Rack::Static, potentially allowing attackers to access files and tamper with logs; CVE-2025-27610 is noted with a CVSS score of 7.5. #Cybersecurity #Ruby #DataBreach https://t.co/acMa17y088	2025.04.25
4	The Hacker News @TheHackersNews ???? Critical Exploit Alert! A 9.0 CVSS flaw in Commvault Command Center lets hackers run code without logging in. ???? Targets versions 11.38.0–11.38.19 ???? Pre-auth SSRF → Remote Code Execution Learn more about CVE-2025-34028 here: https://t.co/Scx7xa4a96	2025.04.24
5	Dark Web Informer - Cyber Threat Intelligence @DarkWebInformer CVSS: 10	2025.04.24

News

(Total : 9)

Total keyword

Vulnerability CVSS Exploit Attacker Update Malware RCE attack Report Advertising CVE ZeroDay Commvault GitHub WhatsApp Operation target Microsoft Browser Chrome Check Point Clop LOTUS PANDA China Kaspersky Phishing Ucraina Russia RATel Campaign Cryptocurrency DarkWeb Lobshot Ransomware Victim DNS intelligence WordPress Webshell plugin Cisco IoT Zscaler hacking Linux Ubuntu Software Docker Supply chain Education

No	Title	Date
1	28th April – Threat Intelligence Report - Malware.News	2025.04.28
2	Hackers Exploit Critical Craft CMS Flaws; Hundreds of Servers Likely Compromised - The Hacker News	2025.04.28
3	Researchers Identify Rack::Static Vulnerability Enabling Data Breaches in Ruby Servers - The Hacker News	2025.04.25
4	Commvault Command Center Path Traversal Vulnerability (CVE-2025-34028) - FortiGuard Labs	2025.04.25
5	Critical Commvault Command Center Flaw Enables Attackers to Execute Code Remotely - The Hacker News	2025.04.24

Additional information

No	Title	Date
1	2025 Cyber Resilience Research Discovers Speed of AI Advancing Emerging Attack Types - Malware.News	2025.04.28
2	Intel CEO Targets Change in Corporate Culture to Shape Up - Bloomberg Technology	2025.04.28
3	IR Trends Q1 2025: Phishing soars as identity-based attacks persist - Malware.News	2025.04.28
4	Top Tier Target \| What It Takes to Defend a Cybersecurity Company from Today’s Adversaries - Malware.News	2025.04.28
5	28th April – Threat Intelligence Report - Malware.News	2025.04.28
View only the last 5

No	Title	Date
1	28th April – Threat Intelligence Report - Malware.News	2025.04.28
2	28th April – Threat Intelligence Report - Malware.News	2025.04.28
3	28th April – Threat Intelligence Report - Malware.News	2025.04.28
4	Commvault Command Center Path Traversal Vulnerability (CVE-2025-34028) - FortiGuard Labs	2025.04.25
5	Critical Commvault Command Center Flaw Enables Attackers to Execute Code Remotely - The Hacker News	2025.04.24
View only the last 5

No data

Beta Service, If you select keyword, you can check detailed information.