Cyber Threat Trends

Summary: 2025/04/30 11:46

First reported date: 2011/08/17
Inquiry period : 2025/04/23 11:46 ~ 2025/04/30 11:46 (7 days), 7 search results

전 기간대비 -14% 낮은 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 RCE attack c&c 입니다.
악성코드 유형 Vawtrak 도 새롭게 확인됩니다.
공격자 Kimsuky 도 새롭게 확인됩니다.
공격기술 hacking hijack 도 새롭게 확인됩니다.
기관 및 기업 ESET Amazon France Palo Alto Networks Paloalto Tenable North Korea Spain DPRK 도 새롭게 확인됩니다.
기타 access eCommerce Alleged Supply chain Password 등 신규 키워드도 확인됩니다.

* 최근 뉴스기사 Top3:
    ㆍ 2025/04/29 9 Open source cloud security tools for 2025
    ㆍ 2025/04/29 Interesting WordPress Malware Disguised as Legitimate Anti-Malware Plugin
    ㆍ 2025/04/28 Deploy Bravely with Prisma AIRS

Date range button:

First seen:

Last seen:

Keyword

Trend graph by period

Related keyword cloud

Top 100

#	Trend	Count	Comparison
1	plugin	7	▼ -1 (-14%)
2	RCE	5	▲ 2 (40%)
3	Malware	3	- 0 (0%)
4	attack	3	▲ 2 (67%)
5	access	3	▲ new
6	Advertising	3	- 0 (0%)
7	Update	3	▼ -1 (-33%)
8	Report	3	- 0 (0%)
9	intelligence	2	▼ -1 (-50%)
10	Exploit	2	- 0 (0%)
11	c&c	2	▲ 1 (50%)
12	eCommerce	2	▲ new
13	Alleged	2	▲ new
14	WordPress	2	▼ -1 (-50%)
15	Supply chain	1	▲ new
16	code	1	- 0 (0%)
17	Password	1	▲ new
18	function	1	▲ new
19	php	1	▲ new
20	ESET	1	▲ new
21	file	1	▼ -2 (-200%)
22	Vulnerability	1	▼ -2 (-200%)
23	Java	1	▲ new
24	Forensics	1	▲ new
25	Amazon	1	▲ new
26	Vawtrak	1	▲ new
27	Linux	1	▲ new
28	ZeroDay	1	- 0 (0%)
29	DNS	1	▲ new
30	XDR	1	▲ new
31	NIST	1	▲ new
32	target	1	▼ -3 (-300%)
33	Kubernetes	1	▲ new
34	cloud	1	▲ new
35	compliance	1	▲ new
36	hacking	1	▲ new
37	AIRS	1	▲ new
38	Victim	1	- 0 (0%)
39	LinkedIn	1	▲ new
40	httpstcoWnl	1	▲ new
41	Sale	1	▲ new
42	France	1	▲ new
43	Palo Alto Networks	1	▲ new
44	United States	1	▼ -1 (-100%)
45	Paloalto	1	▲ new
46	팔로알토	1	▲ new
47	Palo Alto	1	▲ new
48	Tenable	1	▲ new
49	hijack	1	▲ new
50	North Korea	1	▲ new
51	Operation	1	▼ -1 (-100%)
52	payment	1	▲ new
53	Red Team	1	▲ new
54	AI	1	▲ new
55	Prisma	1	▲ new
56	Spain	1	▲ new
57	Kimsuky	1	▲ new
58	DPRK	1	▲ new
59	httpsvoicevosicompluginscontentloadmodulesrcjslistphpfcomputernametxt	1	▲ new
60	ComputerName	1	▲ new
61	tool	1	▲ new

Special keyword group

Top 5

Malware Type

This is the type of malware that is becoming an issue.

Keyword	Average	Label
Vawtrak		1 (100%)

Attacker & Actors

The status of the attacker or attack group being issued.

Keyword	Average	Label
Kimsuky		1 (100%)

Technique

This is an attack technique that is becoming an issue.

Keyword	Average	Label
RCE		5 (55.6%)
Exploit		2 (22.2%)
hacking		1 (11.1%)
hijack		1 (11.1%)

Country & Company

This is a country or company that is an issue.

Keyword	Average	Label
ESET		1 (10%)
Amazon		1 (10%)
France		1 (10%)
Palo Alto Networks		1 (10%)
United States		1 (10%)

Threat info

Last 5

SNS

(Total : 4)

Total keyword

plugin RCE Spain Advertising WordPress France Kimsuky DPRK ComputerName North Korea

No	Title	Date
1	Emmy Byrne @byrne_emmy12099 https://voicevosi.com/plugins/content/loadmodule/src/js/list.php?f=%computername%.txt #kimsuky #DPRK	2025.04.28
2	Dark Web Informer - Cyber Threat Intelligence @DarkWebInformer ???????????? Alleged WordPress E-Commerce Access for Sale A threat actor is offering access to a WordPress-based online store with full administrative rights and plugin installation capabilities. ???? Details: ???? Country: France ???? Platform: WordPress ???? Average Order Price: €153 ???? ht	2025.04.27
3	MalwareHunterTeam @malwrhunterteam "osb-plugin.exe": 35b8281e499b0779bae22150dac254ddaa71b012c02fe4710ade2188e73f55be 147.93.111.114 @1ZRR4H https://t.co/Wnl9Bptb3X	2025.04.25
4	Dark Web Informer - Cyber Threat Intelligence @DarkWebInformer ???????????? Alleged eCommerce Access for Sale of Spain Prestashop Store A threat actor is auctioning access to a Prestashop-based eCommerce store located in Spain, offering full administrative control and module access. No subscription plugins are installed, and statistics downloads https://t.co/D	2025.04.25

News

(Total : 3)

Total keyword

attack Report Attacker RCE Malware plugin Update intelligence Advertising c&c Exploit Vawtrak Vulnerability Forensics Linux Palo Alto Networks ZeroDay Amazon DNS XDR NIST target Kubernetes hacking Supply chain Operation United States Paloalto Tenable LinkedIn hijack payment Password Red Team Victim Java ESET WordPress

No	Title	Date
1	9 Open source cloud security tools for 2025 - Malware.News	2025.04.29
2	Interesting WordPress Malware Disguised as Legitimate Anti-Malware Plugin - Malware.News	2025.04.29
3	Deploy Bravely with Prisma AIRS - Malware.News	2025.04.28

Additional information

No	Title	Date
1	Samsung’s Chips Business Beats Estimates After Stockpiling Push - Bloomberg Technology	2025.04.30
2	RSAC 2025 executive interview: Cobalt's Gunter Ollman - Malware.News	2025.04.30
3	White House Calls Out Amazon, SoFi CEO on Earnings \| Bloomberg Technology - Bloomberg Technology	2025.04.30
4	Averted DDoS attacks peak last year, could be surpassed by year-end - Malware.News	2025.04.30
5	Zero-day intrusion purportedly thwarts BreachForums comeback - Malware.News	2025.04.30
View only the last 5

No	Title	Date
1	9 Open source cloud security tools for 2025 - Malware.News	2025.04.29
2	Interesting WordPress Malware Disguised as Legitimate Anti-Malware Plugin - Malware.News	2025.04.29
3	Deploy Bravely with Prisma AIRS - Malware.News	2025.04.28
4	Deploy Bravely with Prisma AIRS - Malware.News	2025.04.28
5	IronHusky updates the forgotten MysterySnail RAT to target Russia and Mongolia - Malware.News	2025.04.17
View only the last 5

No data

No	URL	CC	ASN Co	Reporter	Date
1	http://94.140.114.21/vc32.tar Gozi plugin ursnif ursnif related	LV	Sia Nano IT	JAMESWT_MHT	2023.09.28
2	http://94.140.114.21/vc64.tar Gozi plugin ursnif ursnif related	LV	Sia Nano IT	JAMESWT_MHT	2023.09.28
3	http://94.140.112.19/sk32.jpg Gozi ISFB plugin ursnif	LV		JAMESWT_MHT	2023.09.27
4	http://94.140.112.19/sk64.jpg Gozi ISFB plugin ursnif	LV		JAMESWT_MHT	2023.09.27
5	http://94.247.42.213/stilak64.rar Gozi ISFB plugin ursnif	DE	meerfarbig GmbH & Co. KG	abuse_ch	2023.07.28
View only the last 5

Beta Service, If you select keyword, you can check detailed information.