Cyber Threat Trends

Summary: 2025/05/02 02:11

First reported date: 2019/03/04
Inquiry period : 2025/04/02 02:11 ~ 2025/05/02 02:11 (1 months), 4 search results

전 기간대비 50% 높은 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 China ChinaNexus Actor 입니다.
공격기술 Exploit Remote Code Execution APT Campaign 도 새롭게 확인됩니다.
기관 및 기업 Mandiant 도 새롭게 확인됩니다.
기타 Vulnerability Threat Ivanti Critical Suspected 등 신규 키워드도 확인됩니다.

* 최근 뉴스기사 Top3:
ㆍ 2025/04/03 Suspected China-Nexus Threat Actor Actively Exploiting Critical Ivanti Connect Secure Vulnerability (CVE-2025-22457)

Date range button:

First seen:

Last seen:

Keyword

Trend graph by period

Related keyword cloud

Top 100

#	Trend	Count	Comparison
1	China	4	▲ 2 (50%)
2	Exploit	4	▲ new
3	ChinaNexus	4	▲ 2 (50%)
4	Vulnerability	3	▲ new
5	Threat	3	▲ new
6	Actor	3	▲ 2 (67%)
7	Ivanti	2	▲ new
8	Critical	2	▲ new
9	Mandiant	1	▲ new
10	Suspected	1	▲ new
11	Exploiting	1	▲ new
12	Update	1	▲ new
13	Malware	1	- 0 (0%)
14	Remote Code Execution	1	▲ new
15	APT	1	▲ new
16	Connect	1	▲ new
17	Secure	1	▲ new
18	Report	1	▲ new
19	Campaign	1	▲ new
20	Victim	1	▲ new
21	VPN	1	▲ new

Special keyword group

Top 5

Malware Type

This is the type of malware that is becoming an issue.

No data.

Attacker & Actors

The status of the attacker or attack group being issued.

No data.

Technique

This is an attack technique that is becoming an issue.

Keyword	Average	Label
Exploit		4 (57.1%)
Remote Code Execution		1 (14.3%)
APT		1 (14.3%)
Campaign		1 (14.3%)

Country & Company

This is a country or company that is an issue.

Keyword	Average	Label
China		4 (80%)
Mandiant		1 (20%)

Threat info

Last 5

SNS

(Total : 3)

Total keyword

China Exploit Vulnerability Mandiant Victim Campaign Report Update APT Remote Code Execution Malware VPN

No	Title	Date
1	Cyber_OSINT @Cyber_O51NT TeamT5 reported that the China-nexus APT exploited Ivanti Connect Secure VPN vulnerabilities to infiltrate nearly 20 industries across 12 countries, maintaining control over victim networks during analysis. #CyberSecurity #APT https://t.co/U2euOIRQdk	2025.04.14
2	Cyber_OSINT @Cyber_O51NT A suspected China-nexus threat actor is actively exploiting the critical Ivanti Connect Secure vulnerability (CVE-2025-22457), leading to remote code execution and the deployment of new malware families, urging immediate patching by users. #CyberSecurity https://t.co/wTQJV5wM7F	2025.04.04
3	Kimberly @StopMalvertisin Mandiant \| Suspected China-Nexus Threat Actor Actively Exploiting Critical Ivanti Connect Secure Vulnerability (CVE-2025-22457) https://t.co/UdpVZ5y1lT	2025.04.03

News

(Total : 1)

Total keyword

Vulnerability China Exploit

No	Title	Date
1	Suspected China-Nexus Threat Actor Actively Exploiting Critical Ivanti Connect Secure Vulnerability (CVE-2025-22457) - Mandiant / John Wolfram and Michael Edie and Jacob Thompson and Matt Lin and Josh Murchie / malpedia	2025.04.03

Additional information

No	Title	Date
1	Pushing passkeys forward: Microsoft’s latest updates for simpler, safer sign-ins - Malware.News	2025.05.02
2	FBI awaits signal that Salt Typhoon is fully excised from telecom firms, official says - Malware.News	2025.05.02
3	Fake Security Plugin on WordPress Enables Remote Admin Access for Attackers - The Hacker News	2025.05.02
4	Mobile and third-party risk: How legacy testing leaves you exposed - Malware.News	2025.05.01
5	Co-op Hack Triggers Swift Cyber Response Amid Rising Retail Threats - IT Security Guru	2025.05.01
View only the last 5

No	Title	Date
1	China-Nexus Threat Group ‘Velvet Ant’ Leverages a Zero-Day to Deploy Malware on Cisco Nexus Switches - Malware.News	2024.08.27

No data

Beta Service, If you select keyword, you can check detailed information.