Cyber Threat Trends

Summary: 2025/04/17 13:22

First reported date: 2012/10/18
Inquiry period : 2025/03/18 13:22 ~ 2025/04/17 13:22 (1 months), 105 search results

전 기간대비 -19% 낮은 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 Alleged Sale United States unidentified Unauthorized 입니다.
공격기술 RCE 도 새롭게 확인됩니다.
기관 및 기업 Trend Micro UK 도 새롭게 확인됩니다.
기타 FortiGate QRadar Security Suite IABs Shop Revenue 등 신규 키워드도 확인됩니다.

* 최근 뉴스기사 Top3:
    ㆍ 2025/04/17 “I sent you an email from your email account,” sextortion scam claims
    ㆍ 2025/04/16 User with Russian IP address tried to log into NLRB systems following DOGE access, whistleblower says
    ㆍ 2025/04/15 Year in Review: The biggest trends in ransomware

Date range button:

First seen:

Last seen:

Keyword

Trend graph by period

Related keyword cloud

Top 100

#	Trend	Count	Comparison
1	Access	105	▼ -20 (-19%)
2	Alleged	44	▲ 33 (75%)
3	Sale	41	▲ 37 (90%)
4	United States	20	▲ 12 (60%)
5	unidentified	16	▲ 1 (6%)
6	attack	13	- 0 (0%)
7	Exploit	12	- 0 (0%)
8	Unauthorized	12	▲ 9 (75%)
9	Malware	12	▼ -7 (-58%)
10	Update	12	▲ 6 (50%)
11	VPN	10	▲ 5 (50%)
12	Fortinet	9	▲ 8 (89%)
13	Remote Code Execution	8	▲ 1 (13%)
14	Report	8	▼ -4 (-50%)
15	Government	8	▼ -5 (-63%)
16	RCE	7	▲ new
17	Vulnerability	7	- 0 (0%)
18	target	7	- 0 (0%)
19	threat	7	▼ -17 (-243%)
20	CVE	6	▲ 3 (50%)
21	Software	6	▼ -5 (-83%)
22	RDP	5	▲ 4 (80%)
23	admin	5	▼ -3 (-60%)
24	Windows	5	▲ 1 (20%)
25	Campaign	5	▼ -1 (-20%)
26	intelligence	5	- 0 (0%)
27	Phishing	5	▼ -1 (-20%)
28	FortiGate	5	▲ new
29	Password	5	▲ 2 (40%)
30	Operation	5	- 0 (0%)
31	payment	4	▲ 2 (50%)
32	Actor	4	▼ -20 (-500%)
33	USA	4	▲ 2 (50%)
34	Initial	4	▼ -4 (-100%)
35	Shell	4	▲ 1 (25%)
36	Zero Trust	4	▲ 2 (50%)
37	Supply chain	4	▲ 1 (25%)
38	Ransomware	4	▼ -2 (-50%)
39	US	3	▲ 2 (67%)
40	Microsoft	3	▼ -2 (-67%)
41	Browser	3	▲ 2 (67%)
42	United Kingdom	3	- 0 (0%)
43	Brazil	3	▲ 2 (67%)
44	Domain	3	▲ 2 (67%)
45	DarkWeb	3	▼ -7 (-233%)
46	QRadar Security Suite	3	▲ new
47	IABs	3	▲ new
48	Criminal	3	▼ -3 (-100%)
49	Spain	3	▲ 2 (67%)
50	Shop	3	▲ new
51	hacking	2	- 0 (0%)
52	c&c	2	- 0 (0%)
53	GitHub	2	- 0 (0%)
54	Canada	2	▲ 1 (50%)
55	Revenue	2	▲ new
56	Trend Micro	2	▲ new
57	Network	2	- 0 (0%)
58	Africa	2	▲ 1 (50%)
59	Firewall	2	▲ 1 (50%)
60	account	2	- 0 (0%)
61	Australia	2	- 0 (0%)
62	ID	2	▲ new
63	WordPress	2	▼ -1 (-50%)
64	AV	2	▲ new
65	Magento	2	▼ -3 (-150%)
66	FTP	2	▲ new
67	India	2	▲ 1 (50%)
68	Control	2	▲ new
69	plugin	2	▲ 1 (50%)
70	France	2	- 0 (0%)
71	Corporate	2	▲ new
72	Social Engineering	2	▲ 1 (50%)
73	unknown	2	▲ new
74	Administrative	2	▲ new
75	AnyDesk	2	▲ 1 (50%)
76	Token	2	▲ new
77	Data Center	2	▲ new
78	LinkedIn	2	▲ new
79	IBM	2	▲ new
80	Trojan	2	▼ -1 (-50%)
81	MFA	2	▼ -1 (-50%)
82	AI	2	- 0 (0%)
83	Advertising	2	▲ 1 (50%)
84	Learn	2	▲ new
85	RAT	2	▼ -1 (-50%)
86	platform	2	▲ new
87	Stealer	2	- 0 (0%)
88	Email	2	▼ -12 (-600%)
89	팔로알토	1	▲ new
90	UK	1	▲ new
91	ltpgtThe	1	▲ new
92	Italy	1	▼ -1 (-100%)
93	WooCommerce	1	▲ new
94	sensitive	1	- 0 (0%)
95	ltpgt	1	- 0 (0%)
96	Sector	1	▲ new
97	DOGE	1	▼ -2 (-200%)
98	Russia	1	- 0 (0%)
99	Kaspersky	1	- 0 (0%)
100	Shift	1	▲ new

Special keyword group

Top 5

Malware Type

This is the type of malware that is becoming an issue.

Keyword	Average	Label
Ransomware		4 (36.4%)
Trojan		2 (18.2%)
RAT		2 (18.2%)
NetWireRC		1 (9.1%)
njRAT		1 (9.1%)

Attacker & Actors

The status of the attacker or attack group being issued.

Keyword	Average	Label

Technique

This is an attack technique that is becoming an issue.

Keyword	Average	Label
Exploit		12 (26.7%)
Remote Code Execution		8 (17.8%)
RCE		7 (15.6%)
Campaign		5 (11.1%)
Phishing		5 (11.1%)

Country & Company

This is a country or company that is an issue.

Keyword	Average	Label
United States		20 (26%)
Fortinet		9 (11.7%)
Government		8 (10.4%)
USA		4 (5.2%)
US		3 (3.9%)

Threat info

Last 5

SNS

(Total : 84)

Total keyword

United States VPN Fortinet Exploit Update Government RCE attack Report USA CVE Vulnerability Remote Code Execution United Kingdom Spain Phishing Attacker Brazil US Campaign payment Magento Trend Micro hacking India target Africa Windows WordPress Canada Australia plugin QRadar Security Suite AnyDesk France DarkWeb UK Italy GitHub Banking Router Ucraina Backdoor ...

No	Title	Date
1	Dark Web Informer - Cyber Threat Intelligence @DarkWebInformer ???????????? Alleged Access Sale – Argentinian Media Firm ($100M Revenue) A threat actor is allegedly selling AnyDesk access to a media company in Argentina with reported revenue over $100 million. ???? Country: Argentina ???? Industry: Media ???? Revenue: +$100M ???? Access type: AnyDesk ???? htt	2025.04.16
2	Dark Web Informer - Cyber Threat Intelligence @DarkWebInformer ???????????? Alleged RDP Access for Dutch Retail Firm – $5M+ ZoomInfo A cybercriminal is allegedly auctioning RDP access to a Netherlands-based retail company with over $5M in revenue and domain user privileges. ???? Country: Netherlands ???? Industry: Retail ???? Revenue: $5M+ (ZoomInfo) ???? htt	2025.04.16
3	BleepingComputer @BleepinComputer Lifetime access to 15 coding courses is down to $40 in this deal https://t.co/yl3OaMm5GE https://t.co/yl3OaMm5GE	2025.04.15
4	MalwareHunterTeam @malwrhunterteam @h4rmsw4yX Sorry, I not have much access (nor think I ever will as it would be too damaging for some it seems... ????‍♂️) to do limitless testings, so can't really tell. Maybe just start from all .hta files seen from Ukraine and if that gives too much FPs, try to filter more based on what easily	2025.04.15
5	Dark Web Informer - Cyber Threat Intelligence @DarkWebInformer ???? Alleged MikroTik Router Access for Sale (VPN / SOCKS5) A threat actor is allegedly selling access to MikroTik RouterOS v6.49.17 devices, enabling VPN tunneling and SOCKS5 proxies. ???? Supported protocols: PPTP, SSTP, L2TP, OVPN, IPsec, SOCKS5 ???? Pricing: $75–$100 per access https://t.co/kS	2025.04.14

News

(Total : 21)

Total keyword

Malware attack Update Attacker Exploit target Operation Remote Code Execution Software Zero Trust United States Report intelligence Password Windows Government Supply chain Vulnerability Ransomware Email Trojan Phishing Advertising CVE Microsoft Data Center RAT Criminal RCE Browser Campaign LinkedIn VPN Stealer MFA Fortinet Social Engineering RATel payment Victim Cryptocurrency NetWireRC njRAT Palo Alto Networks Russia Kaspersky DLP Paloalto Coinbase Red Team Kubernetes CVSS DDoS ...

No	Title	Date
1	“I sent you an email from your email account,” sextortion scam claims - Malware.News	2025.04.17
2	[remote] WebMethods Integration Server 10.15.0.0000-0092 - Improper Access on Login Page - Exploit-DB.com	2025.04.16
3	User with Russian IP address tried to log into NLRB systems following DOGE access, whistleblower says - Malware.News	2025.04.16
4	Year in Review: The biggest trends in ransomware - Malware.News	2025.04.15
5	Modernizing Federal Security with Prisma Access - Malware.News	2025.04.15

Additional information

No	Title	Date
1	엔디비아 'AI 심장부' GPU에 보안 구멍.. '즉시 패치' 비상 - 시큐리티팩트	2025.04.17
2	Hi, robot: Half of all internet traffic now automated - Malware.News	2025.04.17
3	Zoom Sees Outage With 50,000 Users Reporting Availability Issues - Bloomberg Technology	2025.04.17
4	Nude photos and names: KU Health and Kansas hospital sued for data breach - Malware.News	2025.04.17
5	DeepSeek Poses ‘Profound’ Security Threat, US House Panel Claims - Bloomberg Technology	2025.04.17
View only the last 5

No	Title	Date
1	User with Russian IP address tried to log into NLRB systems following DOGE access, whistleblower says - Malware.News	2025.04.16
2	Modernizing Federal Security with Prisma Access - Malware.News	2025.04.15
3	Fortinet Warns Attackers Retain FortiGate Access Post-Patching via SSL-VPN Symlink Exploit - The Hacker News	2025.04.12
4	An Operator’s Guide to Device-Joined Hosts and the PRT Cookie - Malware.News	2025.04.08
5	An Operator’s Guide to Device-Joined Hosts and the PRT Cookie - Malware.News	2025.04.08
View only the last 5

No data

Beta Service, If you select keyword, you can check detailed information.