Cyber Threat Trends

Summary: 2025/04/26 17:32

First reported date: 2012/10/12
Inquiry period : 2025/03/27 17:32 ~ 2025/04/26 17:32 (1 months), 7 search results

전 기간대비 동일한 트렌드를 보이고 있습니다.
악성코드 유형 GootLoader 도 새롭게 확인됩니다.
공격기술 Phishing RCE 도 새롭게 확인됩니다.
기관 및 기업 China chinese 도 새롭게 확인됩니다.
기타 Email HTML ThreatProtection ProtectionHighlight cybercrime 등 신규 키워드도 확인됩니다.

Date range button:

First seen:

Last seen:

Keyword

Trend graph by period

Related keyword cloud

Top 100

#	Trend	Count	Comparison
1	Java	7	- 0 (0%)
2	JavaScript	7	- 0 (0%)
3	Email	3	▲ new
4	attack	3	- 0 (0%)
5	HTML	2	▲ new
6	ThreatProtection	2	▲ new
7	ProtectionHighlight	2	▲ new
8	cybercrime	2	▲ new
9	NortonLifeLock	2	▲ new
10	Phishing	2	▲ new
11	ZeroDay	2	▲ new
12	RCE	1	▲ new
13	datatheft	1	▲ new
14	recent	1	▲ new
15	analysis	1	▲ new
16	script	1	▲ new
17	file	1	- 0 (0%)
18	XRP	1	▲ new
19	crossplatform	1	▲ new
20	Ripples	1	▲ new
21	library	1	▲ new
22	xrpljs	1	▲ new
23	runtime	1	▲ new
24	Anyone	1	▲ new
25	opensource	1	▲ new
26	Nodejs	1	▲ new
27	China	1	▲ new
28	obfuscation	1	▲ new
29	decrypterdeobfuscator	1	▲ new
30	certain	1	▲ new
31	jsvmp	1	▲ new
32	chinese	1	▲ new
33	GootLoader	1	▲ new
34	zip	1	▲ new
35	URL	1	▲ new
36	Supply chain	1	▲ new

Special keyword group

Top 5

Malware Type

This is the type of malware that is becoming an issue.

Keyword	Average	Label
GootLoader		1 (100%)

Attacker & Actors

The status of the attacker or attack group being issued.

No data.

Technique

This is an attack technique that is becoming an issue.

Keyword	Average	Label
Phishing		2 (66.7%)
RCE		1 (33.3%)

Country & Company

This is a country or company that is an issue.

Keyword	Average	Label
China		1 (50%)
chinese		1 (50%)

Threat info

Last 5

SNS

(Total : 7)

Total keyword

Java Email attack Phishing ZeroDay RCE China chinese GootLoader Supply chain

No	Title	Date
1	BleepingComputer @BleepinComputer ????Ripple's recommend XRP JavaScript library, xrpl.js, was compromised on NPM in a supply chain attack to steal crypto wallets. The index.js file and other functions were modified to include a function that sends private keys and seeds for XRP wallets to https://0x9c.xyz/xcm. https://t.co/asr16tv0	2025.04.22
2	Cyber_OSINT @Cyber_O51NT A recent analysis revealed a JavaScript script used in credit card theft during online transactions, linked to an incident response team's findings on e-commerce security vulnerabilities. #CyberSecurity #DataTheft https://t.co/uztUBPNjhi	2025.04.18
3	Microsoft Threat Intelligence @MsftSecIntel Node.js is an open-source, cross-platform JavaScript runtime environment that's widely used and trusted by developers to build frontend and backend applications. However, threat actors are also leveraging these Node.js characteristics to facilitate malicious activity.	2025.04.15
4	Gi7w0rm @Gi7w0rm Anyone with a working decrypter/deobfuscator for #chinese #javascript obfuscation tool #jsvmp ? Lattest version of a creditcard skimmer I found is using it and its way above my JavaScript capabilities to crack it.	2025.04.05
5	Threat Intelligence @threatintel #ThreatProtection #ProtectionHighlight Email, HTML & JavaScript continue to be abused in phishing attacks. Symantec's ScriptNN protects against these threats blocking zero-day attacks while avoiding false blocks on valid emails. https://t.co/2p25r0jsdR #Cybercrime #CyberSecurity https://t.co/rSV	2025.04.02

News

(Total : 0)

No data.

Additional information

No	Title	Date
1	Threat Hunting: For what, when, and how? - Malware.News	2025.04.26
2	Detection Engineering Fundamentals: What makes a good alert? - Malware.News	2025.04.26
3	What is the xBOM? - Malware.News	2025.04.26
4	To Catch A Thief \| Rubrik - CyberScoop	2025.04.26
5	North Korean Hackers Exploit GenAI to Land Remote Jobs Worldwide - Malware.News	2025.04.26
View only the last 5

No	Title	Date
1	Fake Captcha websites hijack your clipboard to install information stealers - Malware.News	2025.03.10
2	Suchmaschine: Google-Suche funktioniert nur noch mit Javascript - IT Sicherheitsnews	2025.01.18
3	Widespread RAT compromise via bogus emails, JavaScript payloads detailed - Malware.News	2024.12.05
4	Roundcube Vulnerability (CVE-2024-37383) Exploited in Phishing Attacks Targeting Government Agencies for Credential Theft - Malware.News	2024.10.23
5	Water Makara Uses Obfuscated JavaScript in Spear Phishing Campaign, Targets Brazil With Astaroth Malware - Malware.News	2024.10.14
View only the last 5

No data

No	URL	CC	ASN Co	Reporter	Date
1	https://protek-tech.com/wp-includes/PHPMailer/file.php javascript	GB	SkyVision Global Networks Ltd	JobcenterTycoon	2025.01.24
2	http://172.105.120.37/fukk/x javascript opendir	SG	Linode, LLC	Riordz	2024.10.17
3	https://www.careerpower.in/blog/wp-content/uploads/2024/07/27111302/RRB-JE-Notification-2024-PDF.pdf javascript PDF	US		kddx0178318	2024.08.30

Beta Service, If you select keyword, you can check detailed information.