Cyber Threat Trends

Summary: 2025/04/29 00:03

First reported date: 2018/02/21
Inquiry period : 2025/04/22 00:03 ~ 2025/04/29 00:03 (7 days), 24 search results

전 기간대비 8% 높은 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 North Korea dprk cti Campaign Malware 입니다.
악성코드 유형 Ransomware LPEClient NetWireRC Zeus Vawtrak 도 새롭게 확인됩니다.
공격자 CryptoCore unc4899 도 새롭게 확인됩니다.
기관 및 기업 Mandiant Kaspersky Okta Russia S2W United States 도 새롭게 확인됩니다.
기타 beavertail Browser Launches Interview Contagious 등 신규 키워드도 확인됩니다.

* 최근 뉴스기사 Top3:
ㆍ 2025/04/24 DPRK Hackers Steal $137M from TRON Users in Single-Day Phishing Attack
ㆍ 2025/04/24 Contagious Interview (DPRK) Launches a New Campaign Creating Three Front Companies to Deliver a Trio of Malware: BeaverTail, InvisibleFerret, and OtterCookie

Date range button:

First seen:

Last seen:

Keyword

Trend graph by period

Related keyword cloud

Top 100

#	Trend	Count	Comparison
1	North Korea	24	▲ 2 (8%)
2	dprk	24	▲ 2 (8%)
3	cti	17	▲ 1 (6%)
4	Campaign	7	▲ 6 (86%)
5	Malware	7	▲ 2 (29%)
6	itworker	5	▲ 3 (60%)
7	AhnLab	4	▲ 2 (50%)
8	LNK	4	- 0 (0%)
9	APT	4	▲ 1 (25%)
10	SECUI	4	▲ 2 (50%)
11	Kimsuky	3	▼ -4 (-133%)
12	AhnLabSecuInfo	3	▲ 2 (67%)
13	beavertail	2	▲ new
14	Browser	2	▲ new
15	Ransomware	2	▲ new
16	Launches	2	▲ new
17	Interview	2	▲ new
18	Contagious	2	▲ new
19	PebbleDash	2	▲ new
20	Konni	2	▼ -3 (-150%)
21	Mandiant	2	▲ new
22	Phishing	2	▲ 1 (50%)
23	Kaspersky	2	▲ new
24	attack	2	▲ new
25	TraderTraitor	2	▲ 1 (50%)
26	Web	2	▲ new
27	Trend	2	- 0 (0%)
28	위장	2	▲ 1 (50%)
29	Unit	2	▲ new
30	deepfake	2	▲ new
31	amp	2	▲ new
32	Distribution	2	▲ new
33	innorix	1	▲ new
34	Okta	1	▲ new
35	DPRKs	1	▲ new
36	power	1	▲ new
37	AI	1	▲ new
38	wagemole	1	▲ new
39	March	1	▲ new
40	확정	1	▲ new
41	Lazarus	1	▼ -2 (-200%)
42	JanuaryMarch	1	▲ new
43	Trends	1	▲ new
44	Extortion	1	▲ new
45	jumpypisces	1	▲ new
46	CryptoCore	1	▲ new
47	Data	1	▲ new
48	신고	1	▲ new
49	UNC	1	▲ new
50	d48032d835c95af816fbcea6e659cdbe	1	▲ new
51	unc5342	1	▲ new
52	unc4899	1	▲ new
53	LPEClient	1	▲ new
54	Malicious	1	▲ new
55	signbt	1	▲ new
56	frostyferret	1	▲ new
57	Operation	1	- 0 (0%)
58	Role	1	▲ new
59	Crucial	1	▲ new
60	APT37	1	- 0 (0%)
61	Plays	1	▲ new
62	Infrastructure	1	▲ new
63	RokRAT	1	- 0 (0%)
64	Russian	1	▲ new
65	voiddokkaebi	1	▲ new
66	Update	1	▲ new
67	Russia	1	▲ new
68	UNC4736	1	▲ new
69	hole	1	▲ new
70	toolset	1	▲ new
71	df5ba1678a4bf515536c0e622a2f97c597927e01bb674a648d82bbdd797425d9	1	▲ new
72	NetWireRC	1	▲ new
73	crossex	1	▲ new
74	agamemnon	1	▲ new
75	threatneedle	1	▲ new
76	종합소득세	1	▲ new
77	과세표준	1	▲ new
78	synchole	1	▲ new
79	invisibleferret	1	▲ new
80	unc3782	1	▲ new
81	Zeus	1	▲ new
82	crypto	1	▼ -1 (-100%)
83	inside	1	▲ new
84	Vawtrak	1	▲ new
85	actor	1	- 0 (0%)
86	S2W	1	▲ new
87	Analysis	1	- 0 (0%)
88	Willo	1	▲ new
89	GopherGrabber	1	▲ new
90	vstAdphpnewpacomlineampwpnaaa	1	▲ new
91	http	1	▲ new
92	ZEUSDEV	1	▲ new
93	United States	1	▲ new
94	탈취	1	▲ new
95	정보	1	▲ new
96	고지서	1	▲ new
97	Ease	1	▲ new
98	Alarming	1	▲ new
99	Face	1	▲ new
100	False	1	▲ new

Special keyword group

Top 5

Malware Type

This is the type of malware that is becoming an issue.

Keyword	Average	Label
Ransomware		2 (22.2%)
Konni		2 (22.2%)
LPEClient		1 (11.1%)
RokRAT		1 (11.1%)
NetWireRC		1 (11.1%)

Attacker & Actors

The status of the attacker or attack group being issued.

Keyword	Average	Label
Kimsuky		3 (33.3%)
TraderTraitor		2 (22.2%)
Lazarus		1 (11.1%)
CryptoCore		1 (11.1%)
unc4899		1 (11.1%)

Technique

This is an attack technique that is becoming an issue.

Keyword	Average	Label
Campaign		7 (50%)
APT		4 (28.6%)
Phishing		2 (14.3%)
Hijacking		1 (7.1%)

Country & Company

This is a country or company that is an issue.

Keyword	Average	Label
North Korea		24 (36.9%)
dprk		24 (36.9%)
AhnLab		4 (6.2%)
SECUI		4 (6.2%)
Mandiant		2 (3.1%)

Threat info

Last 5

SNS

(Total : 22)

Total keyword

North Korea dprk Campaign Malware SECUI AhnLab APT Kimsuky Ransomware TraderTraitor Kaspersky Browser Konni Distribution Lazarus LPEClient Okta Mandiant CryptoCore Russia NetWireRC RokRAT APT37 Operation unc4899 attack Update UNC4736 Zeus Vawtrak S2W 유포 악성코드 United States Hijacking ...

No	Title	Date
1	JangPro @JangPr0 #APT #DPRK d48032d835c95af816fbcea6e659cdbe Decoy: NTS_eTaxInvoice.html.lnk https://deliberatecollaboration.com/wp-includes/js/src/get.php & upload.php & list.php similar https://t.co/rldVG2Syaw https://t.co/ZKJcng4RBL	2025.04.28
2	lazarusholic @lazarusholic "Lazarus APT updates its toolset in watering hole attacks" published by @Kaspersky. #Innorix, #LPEClient, #Lazarus, #SIGNBT, #SyncHole, #ThreatNeedle, #AGAMEMNON, #CrossEX, #DPRK, #CTI https://t.co/bLRNQvZvWb	2025.04.24
3	lazarusholic @lazarusholic "M-Trends 2025: Data, Insights, and Recommendations From the Frontlines" published by @Mandiant. #ITWorker, #Trend, #UNC1069, #UNC3782, #UNC4736, #UNC4899, #UNC5342, #DPRK, #CTI https://t.co/aM8ET9BT6z	2025.04.24
4	lazarusholic @lazarusholic "제안서로 위장을 하고 있는 북한 코니(Konni) 에서 만든 악성코드-제안서(2025.4.11)" published by @sakaijjang. #Konni, #LNK, #DPRK, #CTI https://t.co/C8RYgvH5YI	2025.04.24
5	lazarusholic @lazarusholic "Russian Infrastructure Plays Crucial Role in North Korean Cybercrime Operations" published by @trendmicro. #BeaverTail, #FrostyFerret, #VoidDokkaebi, #DPRK, #CTI https://t.co/7tOvhUerrV	2025.04.24

News

(Total : 2)

Total keyword

North Korea DPRK Malware Campaign Phishing Cryptocurrency Google Mandiant target attack

No	Title	Date
1	DPRK Hackers Steal $137M from TRON Users in Single-Day Phishing Attack - The Hacker News	2025.04.24
2	Contagious Interview (DPRK) Launches a New Campaign Creating Three Front Companies to Deliver a Trio of Malware: BeaverTail, InvisibleFerret, and OtterCookie - Silent Push / Silent Push / malpedia	2025.04.24

Additional information

No	Title	Date
1	Employee monitoring app exposes users, leaks 21+ million screenshots - Malware.News	2025.04.28
2	Introducing XSIAM 3.0 - Malware.News	2025.04.28
3	Deploy Bravely with Prisma AIRS - Malware.News	2025.04.28
4	2025 Cyber Resilience Research Discovers Speed of AI Advancing Emerging Attack Types - Malware.News	2025.04.28
5	Intel CEO Targets Change in Corporate Culture to Shape Up - Bloomberg Technology	2025.04.28
View only the last 5

No	Title	Date
1	DPRK Hackers Steal $137M from TRON Users in Single-Day Phishing Attack - The Hacker News	2025.04.24
2	DPRK Hackers Steal $137M from TRON Users in Single-Day Phishing Attack - The Hacker News	2025.04.24
3	Tweet on public Google Drive potentially connected to DPRK activity. - Twitter (@browserc... / Cookie Connoisseur / malpedia	2025.04.21
4	DPRK IT Workers Expanding in Scope and Scale - Malware.News	2025.04.01
5	The Fake IT Worker Triangle: Pyongyang, Moscow, and Beijing - Malware.News	2025.01.29
View only the last 5

No data

Beta Service, If you select keyword, you can check detailed information.