Cyber Threat Trends

Summary: 2025/04/25 22:09

First reported date: 2024/07/18
Inquiry period : 2025/03/26 22:09 ~ 2025/04/25 22:09 (1 months), 10 search results

전 기간대비 신규 트렌드를 보이고 있습니다.
악성코드 유형 RAT NetWireRC Trojan 도 새롭게 확인됩니다.
공격자 Lazarus 도 새롭게 확인됩니다.
공격기술 Campaign ClickFix Phishing ClearFake 도 새롭게 확인됩니다.
기관 및 기업 North Korea dprk AhnLab SECUI Kaspersky Russia 도 새롭게 확인됩니다.
기타 BeaverTail Malware cti Tropidoor Email 등 신규 키워드도 확인됩니다.

* 최근 뉴스기사 Top3:
    ㆍ 2025/04/05 North Korean Hackers Deploy BeaverTail Malware via 11 Malicious npm Packages
    ㆍ 2025/04/03 BeaverTail and Tropidoor Malware Distributed via Recruitment Emails
    ㆍ 2025/04/02 BeaverTail and Tropidoor Malware Distributed via Recruitment Emails

Date range button:

First seen:

Last seen:

Keyword

Trend graph by period

Related keyword cloud

Top 100

#	Trend	Count	Comparison
1	BeaverTail	10	▲ new
2	Malware	8	▲ new
3	North Korea	8	▲ new
4	cti	5	▲ new
5	Tropidoor	5	▲ new
6	dprk	5	▲ new
7	Campaign	4	▲ new
8	Email	4	▲ new
9	AhnLab	3	▲ new
10	Victim	2	▲ new
11	npm	2	▲ new
12	contagiousinterview	2	▲ new
13	Recruitment	2	▲ new
14	North	2	▲ new
15	RAT	2	▲ new
16	Distribution	2	▲ new
17	NetWireRC	2	▲ new
18	Korean	2	▲ new
19	Distributed	2	▲ new
20	project	2	▲ new
21	SECUI	2	▲ new
22	Interview	1	▲ new
23	Contagious	1	▲ new
24	ClickFix	1	▲ new
25	famouschollima	1	▲ new
26	ottercookie	1	▲ new
27	Infrastructure	1	▲ new
28	Kaspersky	1	▲ new
29	Russia	1	▲ new
30	Launches	1	▲ new
31	Operation	1	▲ new
32	Role	1	▲ new
33	Crucial	1	▲ new
34	Plays	1	▲ new
35	invisibleferret	1	▲ new
36	voiddokkaebi	1	▲ new
37	Russian	1	▲ new
38	frostyferret	1	▲ new
39	Malicious	1	▲ new
40	Expands	1	▲ new
41	Lazarus	1	▲ new
42	case	1	▲ new
43	Deploy	1	▲ new
44	Hackers	1	▲ new
45	community	1	▲ new
46	채용	1	▲ new
47	Trojan	1	▲ new
48	메일	1	▲ new
49	위장	1	▲ new
50	Phishing	1	▲ new
51	ClearFake	1	▲ new

Special keyword group

Top 5

Malware Type

This is the type of malware that is becoming an issue.

Keyword	Average	Label
RAT		2 (40%)
NetWireRC		2 (40%)
Trojan		1 (20%)

Attacker & Actors

The status of the attacker or attack group being issued.

Keyword	Average	Label
Lazarus		1 (100%)

Technique

This is an attack technique that is becoming an issue.

Keyword	Average	Label
Campaign		4 (57.1%)
ClickFix		1 (14.3%)
Phishing		1 (14.3%)
ClearFake		1 (14.3%)

Country & Company

This is a country or company that is an issue.

Keyword	Average	Label
North Korea		8 (40%)
dprk		5 (25%)
AhnLab		3 (15%)
SECUI		2 (10%)
Kaspersky		1 (5%)

Threat info

Last 5

SNS

(Total : 7)

Total keyword

North Korea Malware dprk Campaign AhnLab Email SECUI ClickFix Kaspersky Russia Operation NetWireRC Lazarus Distribution RAT Attacker Phishing ClearFake

No	Title	Date
1	lazarusholic @lazarusholic "Russian Infrastructure Plays Crucial Role in North Korean Cybercrime Operations" published by @trendmicro. #BeaverTail, #FrostyFerret, #VoidDokkaebi, #DPRK, #CTI https://t.co/7tOvhUerrV	2025.04.24
2	lazarusholic @lazarusholic "Contagious Interview (DPRK) Launches a New Campaign Creating Three Front Companies to Deliver a Trio of Malware" published by @silentpush. #BeaverTail, #ContagiousInterview, #InvisibleFerret, #OtterCookie, #FamousChollima, #ClickFix, #DPRK, #CTI https://t.co/uUEkpODoUq	2025.04.24
3	lazarusholic @lazarusholic "Lazarus Expands Malicious npm Campaign: 11 New Packages Add Malware Loaders and Bitbucket Payloads" published by @SocketSecurity. #BeaverTail, #ContagiousInterview, #Lazarus, #NPM, #DPRK, #CTI https://t.co/sZKO4sicWJ	2025.04.06
4	The Hacker News @TheHackersNews ???? North Korean hackers are hunting developers—right now. New malware-laced npm packages (5,600+ downloads) are spreading BeaverTail and a new RAT loader, hidden as fake utilities. ???? Targets? Your code. Your system. Your data. Read: https://t.co/JKVme9mdYP	2025.04.05
5	Virus Bulletin @virusbtn AhnLab researchers investigate the BeaverTail and Tropidoor malware distributed via recruitment emails suspected to be part of a campaign carried out by North Korean attackers. https://t.co/tGMLzlkccC https://t.co/Sc8fNmidTO	2025.04.04

News

(Total : 3)

Total keyword

Malware Attacker Email Victim RAT Trojan NetWireRC North Korea Distribution Campaign

No	Title	Date
1	North Korean Hackers Deploy BeaverTail Malware via 11 Malicious npm Packages - The Hacker News	2025.04.05
2	BeaverTail and Tropidoor Malware Distributed via Recruitment Emails - Malware.News	2025.04.03
3	BeaverTail and Tropidoor Malware Distributed via Recruitment Emails - ASEC BLOG	2025.04.02

Additional information

No	Title	Date
1	Deep Dive Into Major Dating App Breach That Exposed Private Images - Cybercrime Magazine	2025.04.25
2	Secure Your AI Supply Chain with the New ML-BOM - Malware.News	2025.04.25
3	The DPDP Act 2023 Guide for Healthcare Leaders - Malware.News	2025.04.25
4	Chinese Electronics Makers Shrug, Joke and Wait for Tariff Chaos to Pass - Bloomberg Technology	2025.04.25
5	SAP Confirms Critical NetWeaver Flaw Amid Suspected Zero-Day Exploitation by Hackers - The Hacker News	2025.04.25
View only the last 5

No	Title	Date
1	North Korean Hackers Update BeaverTail Malware to Target MacOS Users - The Hacker News	2024.07.18

No data

No	URL	CC	ASN Co	Reporter	Date
1	http://45.43.11.201:1244/pdown APT BeaverTail Lazarus python StrelaStealer	US	Packet Flip, LLC	DaveLikesMalwre	2024.12.12
2	http://147.124.197.138:1244/pdown APT BeaverTail Lazarus python StrelaStealer	US	AC-AS-1	DaveLikesMalwre	2024.12.12
3	http://66.235.168.232:1244/pdown APT BeaverTail Lazarus python StrelaStealer	US	TIER-NET	DaveLikesMalwre	2024.12.12
4	http://38.92.47.85:1244/pdown APT BeaverTail Lazarus python StrelaStealer	US	COGENT-174	DaveLikesMalwre	2024.12.12
5	http://38.92.47.151:1244/pdown APT BeaverTail Lazarus python StrelaStealer	US	COGENT-174	DaveLikesMalwre	2024.12.12
View only the last 5

Beta Service, If you select keyword, you can check detailed information.