Cyber Threat Trends

Summary: 2025/05/03 18:47

First reported date: 2016/01/05
Inquiry period : 2025/04/03 18:47 ~ 2025/05/03 18:47 (1 months), 9 search results

전 기간대비 -133% 낮은 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 Campaign 입니다.
악성코드 유형 RevengeRAT DYEPACK 도 새롭게 확인됩니다.
공격자 Qilin Hunters International 도 새롭게 확인됩니다.
공격기술 RCE DDoS Phishing Stealer Deface 도 새롭게 확인됩니다.
기관 및 기업 Government Singapore Microsoft North Korea China Iran FBI 도 새롭게 확인됩니다.
기타 Team und Aufschlüsselung von ist 등 신규 키워드도 확인됩니다.

* 최근 뉴스기사 Top3:
    ㆍ 2025/04/30 RansomHub Went Dark April 1; Affiliates Fled to Qilin, DragonForce Claimed Control
    ㆍ 2025/04/15 Aufschlüsselung von Ransomware-as-a-Service
    ㆍ 2025/04/11 The Importance of Monitoring Threat Actors in an Era of Blurring Boundaries

Date range button:

First seen:

Last seen:

Keyword

Trend graph by period

Related keyword cloud

Top 100

#	Trend	Count	Comparison
1	RaaS	9	▼ -12 (-133%)
2	Ransomware	8	▼ -8 (-100%)
3	Malware	3	▼ -4 (-133%)
4	Operation	3	▼ -3 (-100%)
5	Campaign	3	▲ 2 (67%)
6	Report	2	▼ -3 (-150%)
7	RCE	2	▲ new
8	RansomwareasaService	2	- 0 (0%)
9	Qilin	2	▲ new
10	attack	2	▼ -3 (-150%)
11	Government	2	▲ new
12	target	2	▼ -2 (-100%)
13	Victim	2	▼ -1 (-50%)
14	Vulnerability	1	- 0 (0%)
15	Team	1	▲ new
16	Hunters International	1	▲ new
17	und	1	▲ new
18	Aufschlüsselung	1	▲ new
19	von	1	▲ new
20	ist	1	▲ new
21	recent	1	▲ new
22	Interlock	1	▲ new
23	September	1	▲ new
24	DarkAtlas	1	▲ new
25	Research	1	▲ new
26	BlackLock	1	- 0 (0%)
27	FEELFOUR	1	▲ new
28	RansomBay	1	▲ new
29	DragonForce	1	▲ new
30	Relaunch	1	▲ new
31	INC	1	▲ new
32	active	1	▲ new
33	mid	1	▲ new
34	Singapore	1	▲ new
35	RansomHub	1	▲ new
36	April	1	▲ new
37	Went	1	▲ new
38	own	1	- 0 (0%)
39	International	1	▲ new
40	DDoS	1	▲ new
41	DarkWeb	1	▼ -2 (-200%)
42	Kaspersky	1	▼ -1 (-100%)
43	Phishing	1	▲ new
44	RevengeRAT	1	▲ new
45	Russia	1	▼ -1 (-100%)
46	Microsoft	1	▲ new
47	Telegram	1	- 0 (0%)
48	North Korea	1	▲ new
49	China	1	▲ new
50	Iran	1	▲ new
51	DYEPACK	1	▲ new
52	behalf	1	▲ new
53	Criminal	1	▼ -1 (-100%)
54	Stealer	1	▲ new
55	Deface	1	▲ new
56	Exploit	1	▼ -1 (-100%)
57	Fullon	1	▲ new
58	intelligence	1	▲ new
59	Goes	1	▲ new
60	Dumps	1	▲ new
61	FBI	1	▲ new
62	t	1	▲ new
63	Devman	1	▲ new
64	Dark	1	▼ -3 (-300%)

Special keyword group

Top 5

Malware Type

This is the type of malware that is becoming an issue.

Keyword	Average	Label
Ransomware		8 (80%)
RevengeRAT		1 (10%)
DYEPACK		1 (10%)

Attacker & Actors

The status of the attacker or attack group being issued.

Keyword	Average	Label
Qilin		2 (66.7%)
Hunters International		1 (33.3%)

Technique

This is an attack technique that is becoming an issue.

Keyword	Average	Label
Campaign		3 (30%)
RCE		2 (20%)
DDoS		1 (10%)
Phishing		1 (10%)
Stealer		1 (10%)

Country & Company

This is a country or company that is an issue.

Keyword	Average	Label
Government		2 (20%)
Singapore		1 (10%)
Kaspersky		1 (10%)
Russia		1 (10%)
Microsoft		1 (10%)

Threat info

Last 5

SNS

(Total : 5)

Total keyword

RaaS Ransomware Report Government RCE target Campaign Qilin attack

No	Title	Date
1	ANY.RUN @anyrun_app ???? INC #ransomware is a RaaS active since mid 2023. It has been involved in attacks on government, manufacturing, and oil & gas industries. ????‍???? Learn more and collect intel: https://t.co/vileOKgFKx https://t.co/Qv4CHzh3ZQ	2025.04.28
2	Dark Web Informer - Cyber Threat Intelligence @DarkWebInformer ????RansomBay Ransomware-as-a-Service (RaaS) Relaunch by DragonForce The threat actor group DragonForce has announced the relaunch and support of the RansomBay RaaS program, inviting affiliates who can meet strict conditions. They advertise the project as targeting Tier 1 https://t.co/QfJSqw4zKe	2025.04.24
3	Cyber_OSINT @Cyber_O51NT The DarkAtlas Research Team reports that BlackLock ransomware is emerging as a major threat in 2025, noted for its unpredictable tactics and potential to become the most active RaaS group this year. #CyberSecurity #Ransomware https://t.co/pxGioWF6Nj	2025.04.20
4	Cyber_OSINT @Cyber_O51NT A recent article reveals that the Interlock ransomware, first spotted in September 2024, is conducting Big Game Hunting and double extortion campaigns, but it doesn't fit the RaaS model as no affiliate recruitment has been found. #CyberSecurity https://t.co/Jm9wuFj6g5	2025.04.17
5	Dark Web Informer - Cyber Threat Intelligence @DarkWebInformer ????Devman on behalf of Qilin announces FEELFOUR Devman is also releasing their own RaaS platform on June 20th https://t.co/BBL1r83ZLh	2025.04.13

News

(Total : 4)

Total keyword

Ransomware RaaS Malware Operation Victim Campaign Exploit Government intelligence target attack FBI Stealer RCE Singapore Qilin Deface DarkWeb Criminal Kaspersky Hunters International RevengeRAT Vulnerability DDoS Phishing DYEPACK Report Russia Attacker Microsoft Telegram North Korea China Iran

No	Title	Date
1	RansomHub Went Dark April 1; Affiliates Fled to Qilin, DragonForce Claimed Control - The Hacker News	2025.04.30
2	Aufschlüsselung von Ransomware-as-a-Service - Malware.News	2025.04.15
3	The Importance of Monitoring Threat Actors in an Era of Blurring Boundaries - Malware.News	2025.04.11
4	Hunters International Dumps Ransomware, Goes Full-on Extortion - Malware.News	2025.04.05

Additional information

No	Title	Date
1	The Double-Edged Sword of AI in Cybersecurity: Threats, Defenses & the Dark Web Insights Report 2025 - Malware.News	2025.05.03
2	US indicts Black Kingdom ransomware admin for Microsoft Exchange attacks - Malware.News	2025.05.03
3	On world password day, Microsoft says fewer passwords, more passkeys - Malware.News	2025.05.03
4	Pro-Russian hacktivists intensify DDoS attacks on Dutch orgs - Malware.News	2025.05.03
5	Malware gains persistence by mimicking WordPress security plugin - Malware.News	2025.05.03
View only the last 5

No	Title	Date
1	The Importance of Monitoring Threat Actors in an Era of Blurring Boundaries - Malware.News	2025.04.11
2	The Importance of Monitoring Threat Actors in an Era of Blurring Boundaries - Malware.News	2025.04.11
3	The Importance of Monitoring Threat Actors in an Era of Blurring Boundaries - Malware.News	2025.04.11
4	Shifting the sands of RansomHub’s EDRKillShifter - Malware.News	2025.03.27
5	LABScon24 Replay \| Kryptina RaaS: From Unsellable Cast-off to Enterprise Ransomware - Malware.News	2025.03.26
View only the last 5

No data

Beta Service, If you select keyword, you can check detailed information.