Cyber Threat Trends

Summary: 2025/04/19 13:20

First reported date: 2008/06/10
Inquiry period : 2025/04/18 13:20 ~ 2025/04/19 13:20 (1 days), 16 search results

지난 7일 기간대비 -56% 낮은 트렌드를 보이고 있습니다.
지난 7일 기간대비 상승한 Top5 연관 키워드는 attack Malware Group DarkWeb Akira 입니다.
악성코드 유형 Lumma Sodinokibi Vidar Raccoon RedLine 도 새롭게 확인됩니다.
기관 및 기업 대만 안랩 도 새롭게 확인됩니다.
기타 Kali Browser vietnamcyberattack HIPAA Food 등 신규 키워드도 확인됩니다.

* 최근 뉴스기사 Top3:
    ㆍ 2025/04/19 HHS fines Guam hospital over ransomware attack, HIPAA violations
    ㆍ 2025/04/19 Data breach confirmed by Ahold Delhaize after INC ransomware claims
    ㆍ 2025/04/19 Paradies Shops to settle ransomware-related breach for $6.9M

참고로 동일한 그룹의 악성코드 타입은 WannaCry Sodinokibi Phobos 등 78개 종이 확인됩니다.

Date range button:

First seen:

Last seen:

Keyword

Trend graph by period

Related keyword cloud

Top 100

#	Trend	Count	Comparison
1	Ransomware	16	▼ -9 (-56%)
2	attack	7	▲ 2 (29%)
3	Alert	7	▼ -2 (-29%)
4	Victim	7	▼ -3 (-43%)
5	Malware	6	▲ 1 (17%)
6	Group	4	▲ 1 (25%)
7	DarkWeb	4	▲ 1 (25%)
8	Akira	3	▲ 1 (33%)
9	Report	3	▼ -2 (-67%)
10	MWNEWS	2	- 0 (0%)
11	Interlock	2	▲ 1 (50%)
12	gang	2	▲ 1 (50%)
13	ClickFix	2	▲ 2 (100%)
14	Operation	2	▲ 1 (50%)
15	Recorded Future	2	▲ 2 (100%)
16	United States	2	▼ -1 (-50%)
17	Cryptocurrency	2	▲ 2 (100%)
18	Kali	1	▲ new
19	Stealer	1	▲ 1 (100%)
20	Google	1	▲ 1 (100%)
21	Update	1	▼ -1 (-100%)
22	Criminal	1	- 0 (0%)
23	Exploit	1	▼ -1 (-100%)
24	GameoverP2P	1	▲ 1 (100%)
25	Browser	1	▲ new
26	Lumma	1	▲ new
27	Telegram	1	▲ 1 (100%)
28	c&c	1	▲ 1 (100%)
29	VPN	1	▲ 1 (100%)
30	vietnamcyberattack	1	▲ new
31	Takedown	1	▲ 1 (100%)
32	breach	1	▲ 1 (100%)
33	HIPAA	1	▲ new
34	Food	1	▲ new
35	INC	1	- 0 (0%)
36	Delhaize	1	▲ new
37	Ahold	1	▲ 1 (100%)
38	North	1	▲ new
39	ransomwarerelated	1	▲ new
40	Email	1	- 0 (0%)
41	Shops	1	▲ new
42	Sodinokibi	1	▲ new
43	Russia	1	- 0 (0%)
44	target	1	▼ -2 (-200%)
45	Software	1	- 0 (0%)
46	RCE	1	▼ -1 (-100%)
47	intelligence	1	- 0 (0%)
48	Campaign	1	▼ -1 (-100%)
49	Could	1	▲ new
50	Phishing	1	- 0 (0%)
51	Taiwan	1	- 0 (0%)
52	CMC	1	▲ new
53	onset	1	▲ new
54	Vietnams	1	▲ new
55	Global	1	▲ 1 (100%)
56	Media	1	▲ new
57	Hubbard	1	▲ new
58	Mcllwainamp	1	▲ new
59	Qilin	1	- 0 (0%)
60	LYNX	1	- 0 (0%)
61	DH	1	▲ new
62	Smith	1	▲ new
63	RSA Conference	1	▲ 1 (100%)
64	Japan	1	▲ 1 (100%)
65	AhnLab	1	▲ 1 (100%)
66	Kaspersky	1	- 0 (0%)
67	Dark	1	- 0 (0%)
68	Vidar	1	▲ new
69	Raccoon	1	▲ new
70	RedLine	1	▲ new
71	Survive	1	▲ new
72	April	1	▲ 1 (100%)
73	Reading	1	▲ 1 (100%)
74	Agency	1	▲ new
75	Education	1	- 0 (0%)
76	Title	1	▲ new
77	Indipendent	1	▲ new
78	솔루션	1	▲ new
79	대만	1	▲ new
80	안랩	1	▲ new
81	conference	1	▲ 1 (100%)
82	HHS	1	▲ new

Special keyword group

Top 5

Malware Type

This is the type of malware that is becoming an issue.

Keyword	Average	Label
Ransomware		16 (64%)
Akira		3 (12%)
GameoverP2P		1 (4%)
Lumma		1 (4%)
Sodinokibi		1 (4%)

Attacker & Actors

The status of the attacker or attack group being issued.

No data.

Technique

This is an attack technique that is becoming an issue.

Keyword	Average	Label
ClickFix		2 (28.6%)
Stealer		1 (14.3%)
Exploit		1 (14.3%)
RCE		1 (14.3%)
Campaign		1 (14.3%)

Country & Company

This is a country or company that is an issue.

Keyword	Average	Label
Recorded Future		2 (16.7%)
United States		2 (16.7%)
Google		1 (8.3%)
Russia		1 (8.3%)
Taiwan		1 (8.3%)

Malware Family

Top 5

A malware family is a group of applications with similar attack techniques.
In this trend, it is classified into Ransomware, Stealer, RAT or Backdoor, Loader, Botnet, Cryptocurrency Miner.

Threat info

Last 5

SNS

(Total : 11)

Total keyword

Ransomware Victim DarkWeb attack Akira ClickFix Report Cryptocurrency Malware

No	Title	Date
1	Cyber_OSINT @Cyber_O51NT On April 12, 2025, CMC Group engineers experienced the onset of Vietnam's most notable ransomware attack, as network logs revealed an unfamiliar admin account probing hidden developer subnets. #CyberSecurity #VietnamCyberAttack https://t.co/J9g2I9tBAk	2025.04.18
2	FalconFeeds.io @FalconFeedsio ????Ransomware Alert: Akira ransomware group has added 2 new victims to their dark web portal. - Agencia Browne y Espinoza ???????? An accounting company based in Chile. NB : The group claims to have obtained 37 GB of organization's data. - Heinz Hammer Vertragswerkstatt GmbH ???????? A https:	2025.04.18
3	FalconFeeds.io @FalconFeedsio ???? Ransomware Alert: D.H. Smith Company Inc (https://t.co/npPKtnvJjq), a licensed and bonded contractor specializing in lathing and plastering services, based in USA, has fallen victim to LYNX Ransomware ???? Key Details: ????Threat Actor : LYNX ????Published date : 18-04-2025 ???? https://t.c	2025.04.18
4	FalconFeeds.io @FalconFeedsio ???? Ransomware Alert: Hubbard, Mcllwain,& Brakefield, P.C (https://t.co/OL2JeOKEex), a Tuscaloosa, Alabama-based law firm, has fallen victim to Akira ransomware. ???? Key Details: ????Threat Actor : Akira ????Published date : 18-04-2025 ⚠ Data Size : 4 GB https://t.co/J8jfeSmJId	2025.04.18
5	BleepingComputer @BleepinComputer Interlock ransomware gang pushes fake IT tools in ClickFix attacks - @billtoulas https://t.co/I1Na1PgWU6 https://t.co/I1Na1PgWU6	2025.04.18

News

(Total : 5)

Total keyword

Malware Ransomware attack Recorded Future United States Operation VPN Google Takedown Email intelligence RCE Software target Sodinokibi Exploit Report Browser Kali Update Vidar Japan Taiwan AhnLab Education conference 안랩 대만 RedLine Raccoon Kaspersky RSA Conference Phishing Russia Campaign c&c Cryptocurrency Telegram Lumma DarkWeb GameoverP2P Criminal Stealer

No	Title	Date
1	HHS fines Guam hospital over ransomware attack, HIPAA violations - Malware.News	2025.04.19
2	Paradies Shops to settle ransomware-related breach for $6.9M - Malware.News	2025.04.19
3	Data breach confirmed by Ahold Delhaize after INC ransomware claims - Malware.News	2025.04.19
4	Dark Web Market: STYX Market - Malware.News	2025.04.18
5	“요즘 안랩 마케팅 직원들 바쁘네”…안랩, 글로벌 보안 전시회 잇달아 참가 - 시큐리티팩트	2025.04.18

Additional information

No	Title	Date
1	Tesla to Delay Production of Cheaper EVs, Reuters Reports - Bloomberg Technology	2025.04.19
2	When Vulnerability Information Flows are Vulnerable Themselves - Malware.News	2025.04.19
3	CISA warns threat hunting staff of end to Google, Censys contracts as agency cuts set in - Malware.News	2025.04.19
4	Radiology practice reportedly working with FBI after ‘data security incident’ - Malware.News	2025.04.19
5	Text scams grow to steal hundreds of millions of dollars - Malware.News	2025.04.19
View only the last 5

No	Title	Date
1	Paradies Shops to settle ransomware-related breach for $6.9M - Malware.News	2025.04.19
2	Data breach confirmed by Ahold Delhaize after INC ransomware claims - Malware.News	2025.04.19
3	Dark Web Market: STYX Market - Malware.News	2025.04.18
4	Dark Web Market: STYX Market - Malware.News	2025.04.18
5	“요즘 안랩 마케팅 직원들 바쁘네”…안랩, 글로벌 보안 전시회 잇달아 참가 - 시큐리티팩트	2025.04.18
View only the last 5

No	Request	Hash(md5)	Report No	Date
1	hello.exe Ransomware Malicious Library .NET EXE PE32 PE File	69d1c11ae24884ea55ab39787853ad0c	55331	2024.11.13

Level	Description
danger	File has been identified by 58 AntiVirus engines on VirusTotal as malicious
notice	Allocates read-write-execute memory (usually to unpack itself)
info	Checks amount of memory in system
info	Checks if process is being debugged by a debugger
info	Collects information to fingerprint the system (MachineGuid
info	The executable contains unknown PE section names indicative of a packer (could be a false positive)

No data

No	URL	CC	ASN Co	Reporter	Date
1	https://hilarious-trifle-d9182e.netlify.app/lootsubmit.ps1 fog Ransomware	SG	AMAZON-02	JAMESWT_WT	2025.04.04
2	https://hilarious-trifle-d9182e.netlify.app/cwiper.exe fog Ransomware	SG	AMAZON-02	JAMESWT_WT	2025.04.04
3	https://hilarious-trifle-d9182e.netlify.app/Pay fog Ransomware	SG	AMAZON-02	JAMESWT_WT	2025.04.04
4	https://hilarious-trifle-d9182e.netlify.app/stage1.ps1 fog Ransomware	SG	AMAZON-02	JAMESWT_WT	2025.04.04
5	https://hilarious-trifle-d9182e.netlify.app/Pay%20Adjustment.zip fog Ransomware	SG	AMAZON-02	JAMESWT_WT	2025.04.04
View only the last 5

Beta Service, If you select keyword, you can check detailed information.