Cyber Threat Trends

Summary: 2025/04/17 14:51

First reported date: 2009/11/02
Inquiry period : 2025/03/18 14:51 ~ 2025/04/17 14:51 (1 months), 45 search results

전 기간대비 7% 높은 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 Banking Malware target Trojan Android 입니다.
악성코드 유형 Grandoreiro Vawtrak DYEPACK Cryptocurrency Miner Interception 도 새롭게 확인됩니다.
공격기술 Social Engineering RCE 도 새롭게 확인됩니다.
기관 및 기업 Spain VirusTotal Mexico Chinese 도 새롭게 확인됩니다.
기타 Crocodilus Windows securityaffairs Linux Latin 등 신규 키워드도 확인됩니다.

* 최근 뉴스기사 Top3:
    ㆍ 2025/04/16 Threat Intelligence Snapshot: Week 14, 2025
    ㆍ 2025/04/11 How Huoine Marketplace Is Reshaping Global Fraud
    ㆍ 2025/04/10 PlayPraetor Reloaded: CTM360 Uncovers a Play Masquerading Party

Date range button:

First seen:

Last seen:

Keyword

Trend graph by period

Related keyword cloud

Top 100

#	Trend	Count	Comparison
1	Banking	45	▲ 3 (7%)
2	Malware	31	▲ 4 (13%)
3	target	23	▲ 8 (35%)
4	Trojan	21	▲ 8 (38%)
5	Campaign	18	▼ -1 (-6%)
6	Android	18	▲ 7 (39%)
7	Report	15	▼ -2 (-13%)
8	Phishing	13	▼ -4 (-31%)
9	attack	13	- 0 (0%)
10	Criminal	10	▲ 2 (20%)
11	Victim	10	- 0 (0%)
12	Email	9	▲ 2 (22%)
13	Update	9	▼ -1 (-11%)
14	Software	8	- 0 (0%)
15	Operation	7	▲ 1 (14%)
16	intelligence	7	▼ -3 (-43%)
17	Cryptocurrency	7	- 0 (0%)
18	Grandoreiro	6	▲ new
19	Stealer	6	▲ 1 (17%)
20	Crocodilus	6	▲ new
21	Windows	6	▲ new
22	hacking	6	▲ 4 (67%)
23	China	6	▲ 3 (50%)
24	Exploit	6	▼ -6 (-100%)
25	Threat	5	▼ -4 (-80%)
26	Remote Code Execution	5	▼ -6 (-120%)
27	India	5	▲ 3 (60%)
28	Spain	5	▲ new
29	Advertising	5	▼ -3 (-60%)
30	Social Engineering	5	▲ new
31	Browser	4	▼ -3 (-75%)
32	Europe	4	- 0 (0%)
33	Ransomware	4	- 0 (0%)
34	securityaffairs	4	▲ new
35	Telegram	4	▲ 3 (75%)
36	Google	4	▼ -1 (-25%)
37	Takedown	4	▲ 1 (25%)
38	IoC	4	▼ -1 (-25%)
39	Microsoft	4	▲ 3 (75%)
40	Government	4	▼ -8 (-200%)
41	RCE	3	▲ new
42	Vawtrak	3	▲ new
43	Password	3	▼ -4 (-133%)
44	Russia	3	▼ -3 (-100%)
45	DarkWeb	3	- 0 (0%)
46	United States	3	▼ -4 (-133%)
47	Distribution	3	- 0 (0%)
48	Linux	3	▲ new
49	Mobile	3	▲ 1 (33%)
50	Kaspersky	3	▼ -4 (-133%)
51	Latin	2	▲ new
52	DYEPACK	2	▲ new
53	Russian	2	▲ new
54	Push	2	▲ new
55	Device	2	▲ new
56	CTM	2	▲ new
57	VirusTotal	2	▲ new
58	Cryptocurrency Miner	2	▲ new
59	Chrome	2	▲ 1 (50%)
60	ThreatFabric	2	▲ new
61	arrest	2	- 0 (0%)
62	Türkiye	2	▲ 1 (50%)
63	warn	2	▲ new
64	sophisticate	2	▲ new
65	Mexico	2	▲ new
66	Education	2	▼ -7 (-350%)
67	Salvador	2	▲ new
68	NetWireRC	2	▲ 1 (50%)
69	c&c	2	- 0 (0%)
70	Data	2	▲ 1 (50%)
71	Java	2	- 0 (0%)
72	malicious	2	▲ 1 (50%)
73	Akira	2	▲ 1 (50%)
74	DocuSign	2	▲ new
75	Africa	2	▲ 1 (50%)
76	Lumma	2	▼ -1 (-50%)
77	GameoverP2P	2	▲ 1 (50%)
78	Smishing	2	▲ 1 (50%)
79	Interception	2	▲ new
80	GitHub	2	- 0 (0%)
81	ZeroDay	2	- 0 (0%)
82	Backdoor	2	▼ -1 (-50%)
83	Snapshot	2	▼ -1 (-50%)
84	Chinese	2	▲ new
85	Cloudflare	1	- 0 (0%)
86	Rise	1	▲ new
87	SentinelOne	1	▲ new
88	DPDP	1	▲ new
89	Anchor	1	▲ new
90	Wells	1	▲ new
91	Fargo	1	▲ new
92	Act	1	▲ new
93	BFSI	1	▲ new
94	Malvertising	1	▲ new
95	Expand	1	▲ new
96	Newly	1	▲ new
97	Restructured	1	▲ new
98	European	1	▲ new
99	Stocks	1	▲ new
100	Alleged	1	▲ new

Special keyword group

Top 5

Malware Type

This is the type of malware that is becoming an issue.

Keyword	Average	Label
Trojan		21 (42%)
Grandoreiro		6 (12%)
Ransomware		4 (8%)
Vawtrak		3 (6%)
DYEPACK		2 (4%)

Attacker & Actors

The status of the attacker or attack group being issued.

Keyword	Average	Label

Technique

This is an attack technique that is becoming an issue.

Keyword	Average	Label
Campaign		18 (27.3%)
Phishing		13 (19.7%)
Stealer		6 (9.1%)
hacking		6 (9.1%)
Exploit		6 (9.1%)

Country & Company

This is a country or company that is an issue.

Keyword	Average	Label
Banking		45 (45.9%)
China		6 (6.1%)
India		5 (5.1%)
Spain		5 (5.1%)
Europe		4 (4.1%)

Threat info

Last 5

SNS

(Total : 13)

Total keyword

Banking Trojan Malware target Android Report hacking Campaign Grandoreiro India Phishing Victim Rhysida Ransomware Smishing Chinese Australia China DarkWeb Takedown Telegram Rhysida Cryptocurrency Ransomware Russia arrest Kaspersky attack Stealer Africa

No	Title	Date
1	The Hacker News @TheHackersNews CTM360 just uncovered 16,000+ malicious Android URLs tied to the evolving PlayPraetor campaign. ????️ 5 new variants (Phish, RAT, PWA, Phantom, Veil) now target banking, tech, and energy users globally. The threat is expanding fast. Read the full report: https://t.co/GIVwcjw2mB	2025.04.10
2	Cyber_OSINT @Cyber_O51NT Silent Push reports that the Smishing Triad, a Chinese eCrime group, is targeting over 121 countries with SMS phishing campaigns and has introduced a new banking phishing kit aimed at major financial institutions in Australia and the APAC region. #Smishi… https://t.co/TQXPPETEdB	2025.04.10
3	Dark Web Informer - Cyber Threat Intelligence @DarkWebInformer 1️⃣ India – Banking Sector Access for Sale A threat actor is selling CRM access to an Indian banking organization: ???? ~6,000 employees \| Revenue: <$720M ???? Access includes: View/Edit documents, tickets ???? Over 200k internal documents ???? Price: $30 2️⃣ South Africa – Business https://t.	2025.04.10
4	Dark Web Intelligence @DailyDarkWeb #India ???????? - Alleged SBI Data Leak Hits 15 Million Accounts Threat actor claims to have leaked sensitive personal info of 15M SBI Bank customers, including DOBs, contact info & PANs. #darkweb #banking #infosec https://t.co/ECcXeY9tw1	2025.04.07
5	ANY.RUN @anyrun_app ⚠️ Salvador Stealer is a new #Android #malware that poses as a banking app to steal credentials, intercept SMS and OTPs. ???? It exfiltrates via Telegram and works after reboot. Read technical breakdown of its mechanics ???? https://t.co/Wz3VdHjufO	2025.04.01

News

(Total : 32)

Total keyword

Banking Malware target Campaign Trojan Android attack Report Phishing Criminal Attacker Update Email Software Victim Operation intelligence Exploit Windows Cryptocurrency Social Engineering China Stealer Spain Remote Code Execution Advertising Google IoC Europe Microsoft Government Grandoreiro Browser Password India RCE United States Telegram Takedown Linux Vawtrak Distribution Ransomware c&c Cryptocurrency Miner NetWireRC Mexico Türkiye Chrome Lumma hacking Backdoor ZeroDay VirusTotal Akira GitHub DocuSign DYEPACK GameoverP2P Interception Kaspersky Russia Java Education DarkWeb OSINT Recorded Future ...

No	Title	Date
1	Threat Intelligence Snapshot: Week 14, 2025 - Malware.News	2025.04.16
2	European Stocks Rise as Banks Rally; LVMH Miss Hits Luxury - Bloomberg Technology	2025.04.15
3	Wells Fargo to Expand Newly Restructured Tech Commercial Banking - Bloomberg Technology	2025.04.14
4	Stripe’s Banking Push Comes as Fintechs Dive Deeper Into Finance - Bloomberg Technology	2025.04.13
5	How Huoine Marketplace Is Reshaping Global Fraud - Malware.News	2025.04.11

Additional information

No	Title	Date
1	엔디비아 'AI 심장부' GPU에 보안 구멍.. '즉시 패치' 비상 - 시큐리티팩트	2025.04.17
2	Hi, robot: Half of all internet traffic now automated - Malware.News	2025.04.17
3	Zoom Sees Outage With 50,000 Users Reporting Availability Issues - Bloomberg Technology	2025.04.17
4	Nude photos and names: KU Health and Kansas hospital sued for data breach - Malware.News	2025.04.17
5	DeepSeek Poses ‘Profound’ Security Threat, US House Panel Claims - Bloomberg Technology	2025.04.17
View only the last 5

No	Title	Date
1	Threat Intelligence Snapshot: Week 14, 2025 - Malware.News	2025.04.16
2	Threat Intelligence Snapshot: Week 14, 2025 - Malware.News	2025.04.16
3	European Stocks Rise as Banks Rally; LVMH Miss Hits Luxury - Bloomberg Technolo...	2025.04.15
4	Wells Fargo to Expand Newly Restructured Tech Commercial Banking - Bloomberg Technolo...	2025.04.14
5	Stripe’s Banking Push Comes as Fintechs Dive Deeper Into Finance - Bloomberg Technolo...	2025.04.13
View only the last 5

No data

No	URL	CC	ASN Co	Reporter	Date
1	http://77.105.147.129:8080/getfile.php?download=YXBwLXJlbGVhc2UtMQ==&id=63a9f0ea7bb98050796b649e8548... android banking hookbot Pegasus trojan	RU	Plus Telecom LLC	abus3reports	2024.05.04
2	http://94.156.79.114:8082/getfile.php?download=YXBwLXJlbGVhc2UtMS5hcGs= android banking hookbot Pegasus trojan	BG	NET1 Ltd.	abus3reports	2024.05.04
3	http://147.45.47.44:8080/getfile.php?download=YXBwLXJlbGVhc2UtNA==&id=63a9f0ea7bb98050796b649e854818... android banking hookbot Pegasus trojan	RU	OOO FREEnet Group	abus3reports	2024.05.02
4	http://147.45.47.44:8080/getfile.php?download=YXBwLXJlbGVhc2UtMQ==&id=63a9f0ea7bb98050796b649e854818... android banking hookbot Pegasus trojan	RU	OOO FREEnet Group	abus3reports	2024.05.02
5	http://147.45.47.44:8080/getfile.php?download=YXBwLXJlbGVhc2UtMg==&id=63a9f0ea7bb98050796b649e854818... android banking hookbot Pegasus trojan	RU	OOO FREEnet Group	abus3reports	2024.05.02
View only the last 5

Beta Service, If you select keyword, you can check detailed information.