Cyber Threat Trends

Summary: 2025/04/17 13:16

First reported date: 2012/11/14
Inquiry period : 2025/03/18 13:16 ~ 2025/04/17 13:16 (1 months), 140 search results

전 기간대비 -9% 낮은 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 Malware Campaign Report target hacking 입니다.
악성코드 유형 Rhysida Ransomware BlackSuit 도 새롭게 확인됩니다.
공격자 unc5221 도 새롭게 확인됩니다.
공격기술 RCE 도 새롭게 확인됩니다.
기관 및 기업 ESET Europe France US 도 새롭게 확인됩니다.
기타 espionage Ivanti Russian Scattered Arkana 등 신규 키워드도 확인됩니다.

* 최근 뉴스기사 Top3:
    ㆍ 2025/04/16 Chinese UNC5174 Group Expands Arsenal with New Open Source Tool and C2 Infrastructure
    ㆍ 2025/04/16 Chinese espionage group leans on open-source tools to mask intrusions
    ㆍ 2025/04/14 Brass Typhoon: The Chinese Hacking Group Lurking in the Shadows

Date range button:

First seen:

Last seen:

Keyword

Trend graph by period

Related keyword cloud

Top 100

#	Trend	Count	Comparison
1	Group	140	▼ -12 (-9%)
2	Ransomware	73	▼ -20 (-27%)
3	Victim	58	▼ -10 (-17%)
4	Alert	52	▼ -12 (-23%)
5	DarkWeb	42	▼ -14 (-33%)
6	Malware	28	▲ 2 (7%)
7	Campaign	24	▲ 11 (46%)
8	Report	22	▲ 7 (32%)
9	target	21	▲ 5 (24%)
10	hacking	16	▲ 6 (38%)
11	Exploit	16	▲ 10 (63%)
12	China	13	▲ 3 (23%)
13	apt	13	▲ 6 (46%)
14	attack	11	▼ -7 (-64%)
15	Backdoor	10	▲ 9 (90%)
16	United States	10	▼ -3 (-30%)
17	Qilin	10	▲ 6 (60%)
18	Government	9	▲ 8 (89%)
19	Akira	9	- 0 (0%)
20	securityaffairs	9	▲ 3 (33%)
21	Windows	8	▲ 6 (75%)
22	Kaspersky	8	▲ 6 (75%)
23	threat	7	▲ 2 (29%)
24	intelligence	6	▼ -1 (-17%)
25	Russia	6	▲ 4 (67%)
26	Criminal	6	- 0 (0%)
27	North Korea	6	▼ -2 (-33%)
28	Phishing	5	▼ -2 (-40%)
29	ESET	5	▲ new
30	Sarcoma	5	▲ 4 (80%)
31	espionage	5	▲ new
32	PLAY	5	- 0 (0%)
33	Remote Code Execution	5	- 0 (0%)
34	Operation	5	- 0 (0%)
35	Europe	5	▲ new
36	unc5221	5	▲ new
37	Chinese	5	- 0 (0%)
38	Update	4	▲ 2 (50%)
39	LockBit	4	▼ -1 (-25%)
40	RCE	4	▲ new
41	Software	4	▲ 1 (25%)
42	Rhysida Ransomware	4	▲ new
43	Ivanti	4	▲ new
44	RansomHub	4	▼ -11 (-275%)
45	South Korea	4	- 0 (0%)
46	France	4	▲ new
47	Rhysida	4	▲ 3 (75%)
48	recent	4	- 0 (0%)
49	Russian	3	▲ new
50	cti	3	▼ -2 (-67%)
51	dprk	3	▼ -2 (-67%)
52	Scattered	3	▲ new
53	LYNX	3	▲ 2 (67%)
54	Cobalt Strike	3	▲ 2 (67%)
55	Arkana	3	▲ new
56	wow	3	▲ new
57	arrest	3	▲ 2 (67%)
58	cybercrime	3	▲ 1 (33%)
59	actor	3	▲ 1 (33%)
60	databreach	3	▲ new
61	DragonForce	3	▲ 1 (33%)
62	North	3	▲ 1 (33%)
63	Spider	3	▲ new
64	Lazarus	3	▼ -5 (-167%)
65	UNC	3	▲ new
66	MWNEWS	3	▼ -5 (-167%)
67	ZeroDay	3	▲ new
68	MacOS	3	▲ new
69	Email	3	- 0 (0%)
70	flaw	3	▲ new
71	BlackSuit	3	▲ new
72	US	3	▲ new
73	Fallen	2	▲ 1 (50%)
74	Fogransomware	2	▲ new
75	March	2	▲ new
76	Learn	2	▲ new
77	ToddyCat	2	▲ new
78	Korea	2	▼ -1 (-50%)
79	safe	2	▲ new
80	Password	2	▲ new
81	member	2	▲ new
82	Advertising	2	▲ new
83	Vulnerability	2	- 0 (0%)
84	South	2	- 0 (0%)
85	IP	2	▲ new
86	AhnLab	2	▼ -2 (-100%)
87	Research	2	▲ new
88	DLS	2	▲ 1 (50%)
89	Alleged	2	▲ new
90	Labs	2	▲ new
91	Chinalinked	2	▼ -1 (-50%)
92	Microsoft	2	- 0 (0%)
93	Earth	2	▲ new
94	MEDUSA	2	▼ -1 (-50%)
95	Spain	2	▼ -2 (-100%)
96	Israel	2	▲ 1 (50%)
97	Has	2	▲ 1 (50%)
98	crypto	2	▲ new
99	sensitive	2	▲ 1 (50%)
100	sale	2	▲ new

Special keyword group

Top 5

Malware Type

This is the type of malware that is becoming an issue.

Keyword	Average	Label
Ransomware		73 (69.5%)
Akira		9 (8.6%)
LockBit		4 (3.8%)
Rhysida Ransomware		4 (3.8%)
Rhysida		4 (3.8%)

Attacker & Actors

The status of the attacker or attack group being issued.

Keyword	Average	Label
unc5221		5 (35.7%)
Lazarus		3 (21.4%)
sectora01		2 (14.3%)
Gamaredon		2 (14.3%)
Volt Typhoon		1 (7.1%)

Technique

This is an attack technique that is becoming an issue.

Keyword	Average	Label
Campaign		24 (25.5%)
hacking		16 (17%)
Exploit		16 (17%)
apt		13 (13.8%)
Backdoor		10 (10.6%)

Country & Company

This is a country or company that is an issue.

Keyword	Average	Label
China		13 (13.7%)
United States		10 (10.5%)
Government		9 (9.5%)
Kaspersky		8 (8.4%)
Russia		6 (6.3%)

Threat info

Last 5

SNS

(Total : 112)

Total keyword

Ransomware Victim DarkWeb target Campaign hacking Exploit Report apt Malware Akira Backdoor Government United States Kaspersky China Windows North Korea Rhysida Rhysida Ransomware intelligence Software Remote Code Execution Russia attack unc5221 ESET Phishing US LockBit dprk ZeroDay Criminal BlackSuit Europe Cobalt Strike ToddyCat Password Advertising Konni Update Royal sectora01 FIN7 France WannaCry Gamaredon RaaS WannaCryptor ...

No	Title	Date
1	lazarusholic @lazarusholic "Monthly Threat Actor Group Intelligence Report, February 2025 (ENG)" published by @nshcthreatrecon. #SectorA, #SectorA01, #SectorA02, #SectorA05 SectorA07, #Trend, #DPRK, #CTI https://t.co/R6KkS6Emjb	2025.04.16
2	FalconFeeds.io @FalconFeedsio ????Ransomware Alert: LockBit Ransomware group has added 2 new victims to their dark web portal. - Association of Retired Electricians and Pensioners of Cemig and Subsidiaries (AEA-MG) ???????? A non-profit organization representing CEMIG retirees, known for its strong and https://t.co/Q4n38	2025.04.16
3	FalconFeeds.io @FalconFeedsio ????Ransomware Alert: LYNX ransomware group has added 2 new victims to their dark web portal. - Feldman & Lopez, P.A ???????? A Miami-based law firm specializing in property insurance litigation, personal injury, and business interruption claims, dedicated to securing fair https://t.co/e4xUhI	2025.04.16
4	FalconFeeds.io @FalconFeedsio ???? LYNX Ransomware Alert ???? LYNX ransomware group has added 3 new victims to their dark web portal. * Toolsign GmbH???????? * SPS Companies,Inc???????? * Nevada Ready Mix???????? https://t.co/5T9wrQEruO	2025.04.15
5	FalconFeeds.io @FalconFeedsio ????Ransomware Alert: Akira ransomware group has added 2 new victims to their darkweb portal. - King Industries Inc ???????? a global specialty chemical manufacturer providing additives and technologies for lubricants, coatings, and electronic materials, known for high-performance https://t.co/FV	2025.04.15

News

(Total : 28)

Total keyword

Malware Report Campaign Ransomware attack China target Operation United States Chinese Criminal South Korea RCE Exploit hacking arrest Government Kaspersky France Russia MacOS Android Windows Email APT Update intelligence Backdoor AhnLab Europe Lazarus UNC5221 Singapore Spyware Israel Germany C2 c&c Smishing Volt Typhoon Spain Phishing Tick North Korea Mandiant Fortinet Iranian Iran GitHub Linux CISA LockBit Victim ...

No	Title	Date
1	Chinese UNC5174 Group Expands Arsenal with New Open Source Tool and C2 Infrastructure - Malware.News	2025.04.16
2	Chinese espionage group leans on open-source tools to mask intrusions - CyberScoop	2025.04.16
3	Smishing Triad: The Scam Group Stealing the World’s Riches - Security Latest- WIRED	2025.04.14
4	Brass Typhoon: The Chinese Hacking Group Lurking in the Shadows - Security Latest- WIRED	2025.04.14
5	RansomHub Ransomware Group Hits 84 Organizations as New Threat Actors Emerge - Malware.News	2025.04.12

Additional information

No	Title	Date
1	엔디비아 'AI 심장부' GPU에 보안 구멍.. '즉시 패치' 비상 - 시큐리티팩트	2025.04.17
2	Hi, robot: Half of all internet traffic now automated - Malware.News	2025.04.17
3	Zoom Sees Outage With 50,000 Users Reporting Availability Issues - Bloomberg Technology	2025.04.17
4	Nude photos and names: KU Health and Kansas hospital sued for data breach - Malware.News	2025.04.17
5	DeepSeek Poses ‘Profound’ Security Threat, US House Panel Claims - Bloomberg Technology	2025.04.17
View only the last 5

No	Title	Date
1	Qilin takes credit for SK Group compromise - Malware.News	2025.04.11
2	Germany suspects Russian cyber attack on research group - Malware.News	2025.04.10
3	March 2025 APT Group Trends (South Korea) - Malware.News	2025.04.10
4	March 2025 APT Group Trends (South Korea) - ASEC BLOG	2025.04.09
5	China-backed espionage group hits Ivanti customers again - CyberScoop	2025.04.04
View only the last 5

No data

Beta Service, If you select keyword, you can check detailed information.