Cyber Threat Trends

Summary: 2025/04/18 11:20

First reported date: 2014/05/21
Inquiry period : 2025/03/19 11:20 ~ 2025/04/18 11:20 (1 months), 56 search results

전 기간대비 25% 높은 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 VPN Malware Exploit Update Vulnerability 입니다.
악성코드 유형 DYEPACK Clop 도 새롭게 확인됩니다.
공격자 UNC5221 도 새롭게 확인됩니다.
공격기술 RCE Dropper 도 새롭게 확인됩니다.
기관 및 기업 United Kingdom Rapid7 Trend Micro 도 새롭게 확인됩니다.
기타 VPNs 취약점 공격 악용 Linux 등 신규 키워드도 확인됩니다.

* 최근 뉴스기사 Top3:
    ㆍ 2025/04/18 Inside Black Basta: Ransomware Resilience and Evolution After the Leak
    ㆍ 2025/04/15 How to Blur Your House on Google Maps and Why You Should Do It [6 Easy Steps]
    ㆍ 2025/04/15 Fortinet 0-Day, Spotify Checker Shared, and STX Leak Campaign

Date range button:

First seen:

Last seen:

Keyword

Trend graph by period

Related keyword cloud

Top 100

#	Trend	Count	Comparison
1	VPN	56	▲ 14 (25%)
2	Malware	30	▲ 5 (17%)
3	Exploit	21	▲ 6 (29%)
4	Update	18	▲ 6 (33%)
5	Vulnerability	17	▲ 9 (53%)
6	Report	16	▲ 3 (19%)
7	Campaign	15	▲ 6 (40%)
8	United States	13	▲ 4 (31%)
9	China	13	▲ 9 (69%)
10	attack	12	▲ 1 (8%)
11	Google	11	▲ 3 (27%)
12	Email	11	▼ -2 (-18%)
13	access	10	▲ 5 (50%)
14	target	9	- 0 (0%)
15	Operation	9	▲ 3 (33%)
16	Software	8	▼ -2 (-25%)
17	Alleged	8	▲ 7 (88%)
18	Ransomware	7	▲ 3 (43%)
19	Windows	7	▼ -1 (-14%)
20	Mandiant	7	▲ 6 (86%)
21	intelligence	7	▼ -5 (-71%)
22	Microsoft	7	▲ 2 (29%)
23	Advertising	7	▼ -1 (-14%)
24	RCE	6	▲ new
25	Remote Code Execution	6	▼ -4 (-67%)
26	Browser	5	▼ -2 (-40%)
27	Password	5	▼ -1 (-20%)
28	Zero Trust	5	▲ 3 (60%)
29	CISA	5	▲ 4 (80%)
30	ZeroDay	5	▼ -1 (-20%)
31	Ivanti	5	▲ 4 (80%)
32	Victim	5	▼ -8 (-160%)
33	sale	5	▲ 4 (80%)
34	Phishing	5	▼ -6 (-120%)
35	Backdoor	5	▲ 4 (80%)
36	VPNs	4	▲ new
37	Supply chain	4	▲ 2 (50%)
38	Russia	4	- 0 (0%)
39	Criminal	4	▼ -5 (-125%)
40	UNC5221	4	▲ new
41	취약점	4	▲ new
42	공격	4	▲ new
43	악용	4	▲ new
44	Fortinet	4	▲ 1 (25%)
45	threat	4	▼ -3 (-75%)
46	ESET	4	▲ 3 (75%)
47	Kaspersky	4	- 0 (0%)
48	Linux	3	▲ new
49	IoC	3	▼ -1 (-33%)
50	privacy	3	▲ 2 (67%)
51	Government	3	▼ -4 (-133%)
52	Android	3	- 0 (0%)
53	DYEPACK	3	▲ new
54	powershell	3	▲ 2 (67%)
55	network	3	▲ 1 (33%)
56	Router	3	▲ 2 (67%)
57	DarkWeb	3	▼ -4 (-133%)
58	hacking	3	▼ -2 (-67%)
59	c&c	3	▼ -4 (-133%)
60	secure	3	▲ new
61	GameoverP2P	3	▼ -1 (-33%)
62	United Kingdom	3	▲ new
63	Construction	2	▲ new
64	Clop	2	▲ new
65	Weekly	2	▲ new
66	VMware	2	▲ new
67	Rapid7	2	▲ new
68	Palo Alto Networks	2	- 0 (0%)
69	Apple	2	▲ 1 (50%)
70	CVE	2	▲ new
71	Data Center	2	▲ new
72	Dropper	2	▲ new
73	Social Engineering	2	- 0 (0%)
74	Recap	2	▲ new
75	Cisco	2	▼ -2 (-100%)
76	Meraki	2	▲ new
77	Enterprise	2	▲ new
78	Japan	2	▼ -1 (-50%)
79	Chat	2	▲ new
80	Exploits	2	▲ new
81	Chinese	2	▲ 1 (50%)
82	Actor	2	▼ -4 (-200%)
83	Connect	2	▲ new
84	Black Basta	2	▲ 1 (50%)
85	flaw	2	▲ new
86	YouTube	2	▲ new
87	MWNEWS	2	▲ new
88	Trend Micro	2	▲ new
89	엑스	2	▲ new
90	Java	2	- 0 (0%)
91	RATel	2	▲ 1 (50%)
92	LinkedIn	2	▼ -3 (-150%)
93	Trojan	2	- 0 (0%)
94	GitHub	2	▼ -5 (-250%)
95	hijack	2	- 0 (0%)
96	DLP	2	▲ 1 (50%)
97	게이트	2	▲ new
98	EDR	2	▲ 1 (50%)
99	Distribution	2	- 0 (0%)
100	Stealer	2	▼ -5 (-250%)

Special keyword group

Top 5

Malware Type

This is the type of malware that is becoming an issue.

Keyword	Average	Label
Ransomware		7 (33.3%)
DYEPACK		3 (14.3%)
GameoverP2P		3 (14.3%)
Clop		2 (9.5%)
Black Basta		2 (9.5%)

Attacker & Actors

The status of the attacker or attack group being issued.

Keyword	Average	Label
UNC5221		4 (100%)

Technique

This is an attack technique that is becoming an issue.

Keyword	Average	Label
Exploit		21 (30%)
Campaign		15 (21.4%)
RCE		6 (8.6%)
Remote Code Execution		6 (8.6%)
Phishing		5 (7.1%)

Country & Company

This is a country or company that is an issue.

Keyword	Average	Label
United States		13 (13.5%)
China		13 (13.5%)
Google		11 (11.5%)
Mandiant		7 (7.3%)
Microsoft		7 (7.3%)

Threat info

Last 5

SNS

(Total : 19)

Total keyword

VPN Exploit United States China Report Fortinet Malware Update attack Indonesia APT Campaign Victim US Router CISA Browser Police Supply chain Chinese

No	Title	Date
1	BleepingComputer @BleepinComputer CISA tags SonicWall VPN flaw as actively exploited in attacks - @serghei https://t.co/il32rinGDr https://t.co/il32rinGDr	2025.04.17
2	Dark Web Informer - Cyber Threat Intelligence @DarkWebInformer ???? Alleged MikroTik Router Access for Sale (VPN / SOCKS5) A threat actor is allegedly selling access to MikroTik RouterOS v6.49.17 devices, enabling VPN tunneling and SOCKS5 proxies. ???? Supported protocols: PPTP, SSTP, L2TP, OVPN, IPsec, SOCKS5 ???? Pricing: $75–$100 per access https://t.co/kS	2025.04.14
3	Cyber_OSINT @Cyber_O51NT TeamT5 reported that the China-nexus APT exploited Ivanti Connect Secure VPN vulnerabilities to infiltrate nearly 20 industries across 12 countries, maintaining control over victim networks during analysis. #CyberSecurity #APT https://t.co/U2euOIRQdk	2025.04.14
4	ThreatMon @MonThreat ???????? ???? Alleged Sale of VPN Access to US Construction Firm A threat actor has announced the sale of unauthorized VPN access to an Arizona-based commercial and residential construction company. The firm operates in the US construction industry and is said to have annual revenues of https://t.c	2025.04.14
5	BleepingComputer @BleepinComputer Enhance your online privacy with this three-year SurfShark VPN deal https://t.co/BYbbefvuFr https://t.co/BYbbefvuFr	2025.04.13

News

(Total : 37)

Total keyword

VPN Malware Vulnerability Exploit Update Report Campaign Attacker Google Email attack China Operation target United States Software Windows Microsoft intelligence Mandiant Ransomware Advertising RCE Remote Code Execution ZeroDay Zero Trust Backdoor Password Phishing UNC5221 CISA 취약점 ESET Russia Victim Browser Kaspersky Criminal Android Linux IoC c&c DarkWeb hacking Supply chain powershell DYEPACK GameoverP2P Government United Kingdom Rapid7 Fortinet Clop CVE Social Engineering Apple Black Basta Router Palo Alto Networks Cisco Dropper Data Center DLP Trojan Stealer VMware Japan LinkedIn RATel EDR Trend Micro hijack YouTube Distribution GitHub Java Fujitsu ...

No	Title	Date
1	Inside Black Basta: Ransomware Resilience and Evolution After the Leak - Malware.News	2025.04.18
2	How to Blur Your House on Google Maps and Why You Should Do It [6 Easy Steps] - Malware.News	2025.04.15
3	Fortinet 0-Day, Spotify Checker Shared, and STX Leak Campaign - Malware.News	2025.04.15
4	노드VPN, 출퇴근길 공공 와이파이 사용에 대한 보안구멍 경고 - 데일리시큐	2025.04.15
5	Fast SSE? We’re Delivering It In Partnership With Google Cloud - Malware.News	2025.04.15

Additional information

No	Title	Date
1	Japan FSA Says Hacked Online Trading Reaches About $700 Million - Bloomberg Technology	2025.04.18
2	Secure legacy Oracle cloud credentials amid leak reports, CISA warns - Malware.News	2025.04.18
3	가짜 돈·위조품 '꼼짝마!'.. 보안 잉크 아세요? - 시큐리티팩트	2025.04.18
4	Care what you share - Malware.News	2025.04.18
5	Inside Black Basta: Ransomware Resilience and Evolution After the Leak - Malware.News	2025.04.18
View only the last 5

No	Title	Date
1	Inside Black Basta: Ransomware Resilience and Evolution After the Leak - Malware.News	2025.04.18
2	Inside Black Basta: Ransomware Resilience and Evolution After the Leak - Malware.News	2025.04.18
3	How to Blur Your House on Google Maps and Why You Should Do It [6 Easy Steps] - Malware.News	2025.04.15
4	How to Blur Your House on Google Maps and Why You Should Do It [6 Easy Steps] - Malware.News	2025.04.15
5	Fortinet 0-Day, Spotify Checker Shared, and STX Leak Campaign - Malware.News	2025.04.15
View only the last 5

No data

Beta Service, If you select keyword, you can check detailed information.