Cyber Threat Trends

Summary: 2025/04/19 11:19

First reported date: 2015/07/01
Inquiry period : 2025/03/20 11:19 ~ 2025/04/19 11:19 (1 months), 9 search results

전 기간대비 67% 높은 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 SSRF Update attack Malware 입니다.
악성코드 유형 Vawtrak 도 새롭게 확인됩니다.
공격기술 Backdoor hijack RCE 도 새롭게 확인됩니다.
기관 및 기업 Amazon 도 새롭게 확인됩니다.
기타 Server Side Request Forgery target 등 신규 키워드도 확인됩니다.

서버 측에서 위조된 HTTP 요청을 발생시켜 직접적인 접근이 제한된 서버 내부 자원에 접근하여 외부로 데이터 유출 및 오동작을 유발하는 공격

* 최근 뉴스기사 Top3:
    ㆍ 2025/04/15 [webapps] IBMi Navigator 7.5 - Server Side Request Forgery (SSRF)
    ㆍ 2025/04/15 [webapps] Plane 0.23.1 - Server side request forgery (SSRF)
    ㆍ 2025/04/03 [local] ollama 0.6.4 - Server Side Request Forgery (SSRF)

Date range button:

First seen:

Last seen:

Keyword

Trend graph by period

Related keyword cloud

Top 100

#	Trend	Count	Comparison
1	SSRF	9	▲ 6 (67%)
2	Update	3	▲ 2 (67%)
3	attack	3	▲ 2 (67%)
4	Server	3	▲ new
5	Side	3	▲ new
6	Request	3	▲ new
7	Forgery	2	▲ new
8	Malware	2	▲ 1 (50%)
9	target	2	▲ new
10	CVE	2	▲ new
11	Vulnerability	2	- 0 (0%)
12	amp	1	▲ new
13	Alert	1	▲ new
14	metadata	1	▲ new
15	AWS	1	▲ new
16	instance	1	▲ new
17	EC2	1	▲ new
18	Hit	1	▲ new
19	Amazon	1	▲ new
20	c&c	1	▲ new
21	Operation	1	▲ new
22	CrushFTP	1	▲ new
23	Weve	1	▲ new
24	Plane	1	▲ new
25	QRadar Security Suite	1	- 0 (0%)
26	IBMi	1	▲ new
27	Navigator	1	▲ new
28	cve202427564	1	▲ new
29	persistence	1	▲ new
30	vulnerable	1	▲ new
31	ChatGPT	1	▲ new
32	Education	1	- 0 (0%)
33	PHP	1	▲ new
34	Schwachstellen	1	- 0 (0%)
35	Mehrere	1	▲ new
36	DoTNet	1	▲ new
37	intelligence	1	▼ -1 (-100%)
38	Software	1	▲ new
39	GameoverP2P	1	- 0 (0%)
40	cloud	1	▲ new
41	silent	1	▲ new
42	likely	1	▲ new
43	IcedID	1	- 0 (0%)
44	Report	1	- 0 (0%)
45	United States	1	- 0 (0%)
46	powershell	1	▲ new
47	Microsoft	1	- 0 (0%)
48	WMI	1	▲ new
49	MFA	1	- 0 (0%)
50	Vawtrak	1	▲ new
51	XDR	1	▲ new
52	Windows	1	▲ new
53	Twitter	1	- 0 (0%)
54	LinkedIn	1	- 0 (0%)
55	ZeroDay	1	- 0 (0%)
56	Exploit	1	▼ -1 (-100%)
57	Advertising	1	- 0 (0%)
58	Email	1	- 0 (0%)
59	Backdoor	1	▲ new
60	doesnt	1	▲ new
61	hijack	1	▲ new
62	RCE	1	▲ new
63	mittel	1	▲ new

Special keyword group

Top 5

Malware Type

This is the type of malware that is becoming an issue.

Keyword	Average	Label
GameoverP2P		1 (33.3%)
IcedID		1 (33.3%)
Vawtrak		1 (33.3%)

Attacker & Actors

The status of the attacker or attack group being issued.

Keyword	Average	Label

Technique

This is an attack technique that is becoming an issue.

Keyword	Average	Label
Exploit		1 (25%)
Backdoor		1 (25%)
hijack		1 (25%)
RCE		1 (25%)

Country & Company

This is a country or company that is an issue.

Keyword	Average	Label
Amazon		1 (33.3%)
United States		1 (33.3%)
Microsoft		1 (33.3%)

Threat info

Last 5

SNS

(Total : 3)

Total keyword

SSRF CVE ChatGPT Vulnerability attack Update Education

No	Title	Date
1	Unit 42 @Unit42_Intel We've seen persistence in #CVE202427564 #SSRF probes for vulnerable ChatGPT servers, requesting /etc/passwd and URLs using OAST domains. Increase of probes hitting Education (16.6%) and Manufacturing (8%) since Feb 2025. Details at https://t.co/7LxKncmYiy https://t.co/wZgrL68q9q	2025.04.16
2	Hunter @HunterMapping ????Alert???? CVE-2025-32102 & CVE-2025-32103: CrushFTP Hit by SSRF and Directory Traversal Vulnerabilities ????PoC：https://t.co/lQtUDLHxUP ????120K+ Services are found on the https://t.co/ysWb28Crld yearly. ????Hunter Link:https://t.co/OpFcAmqXXM ????Query HUNTER : https://t.co/wiHQ83gyMj	2025.04.15
3	The Hacker News @TheHackersNews ???? AWS doesn't secure your cloud—you do. Most cloud breaches happen because customers miss what's theirs to protect. 5 silent risks you're likely exposed to: • SSRF attacks • Leaky S3 buckets • Over-permissive IAM • Unpatched EC2 • Public-facing services AWS secures the https://t.co/a2YOQA1iXB	2025.03.31

News

(Total : 6)

Total keyword

SSRF Malware target attack Update Amazon Software DoTNet Operation c&c RCE QRadar Security Suite XDR Email hijack MFA IcedID Vulnerability Report United States Attacker powershell Microsoft WMI GameoverP2P intelligence Vawtrak Windows Twitter LinkedIn ZeroDay Exploit Advertising Backdoor

No	Title	Date
1	[UPDATE] [mittel] PHP: Mehrere Schwachstellen - IT Sicherheitsnews	2025.04.17
2	[webapps] Plane 0.23.1 - Server side request forgery (SSRF) - Exploit-DB.com	2025.04.15
3	[webapps] IBMi Navigator 7.5 - Server Side Request Forgery (SSRF) - Exploit-DB.com	2025.04.15
4	Amazon EC2 instance metadata targeted in SSRF attacks - Malware.News	2025.04.11
5	Stopping attacks against on-premises Exchange Server and SharePoint Server with AMSI - Malware.News	2025.04.10

Additional information

No	Title	Date
1	Tesla to Delay Production of Cheaper EVs, Reuters Reports - Bloomberg Technology	2025.04.19
2	When Vulnerability Information Flows are Vulnerable Themselves - Malware.News	2025.04.19
3	CISA warns threat hunting staff of end to Google, Censys contracts as agency cuts set in - Malware.News	2025.04.19
4	Radiology practice reportedly working with FBI after ‘data security incident’ - Malware.News	2025.04.19
5	Text scams grow to steal hundreds of millions of dollars - Malware.News	2025.04.19
View only the last 5

No	Title	Date
1	Amazon EC2 instance metadata targeted in SSRF attacks - Malware.News	2025.04.11
2	Stopping attacks against on-premises Exchange Server and SharePoint Server with AMSI - Malware.News	2025.04.10
3	[NEU] [mittel] IBM License Metric Tool: Mehrere Schwachstellen - IT Sicherheitsnews	2025.03.18
4	Silk Typhoon targeting IT supply chain - Malware.News	2025.03.05
5	Silk Typhoon targeting IT supply chain - Malware.News	2025.03.05
View only the last 5

No data

Beta Service, If you select keyword, you can check detailed information.