popup

Cyber Threat Trends

  1. Day Month

conference CrowdStrike 북한

Summary: 2025/04/17 16:30

First reported date: 2009/07/08
Inquiry period : 2025/04/10 16:29 ~ 2025/04/17 16:29 (7 days), 75 search results


전 기간대비 상승한 Top5 연관 키워드는 Exploit Update Vulnerability Report attack 입니다.
공격자 Anonymous 도 새롭게 확인됩니다.
공격기술 RCE Hijacking Smishing 도 새롭게 확인됩니다.
기관 및 기업 Ucraina Australia Iran Europe Zscaler 도 새롭게 확인됩니다.
기타 FortiGate OttoKit traffic harmless MWNEWS 등 신규 키워드도 확인됩니다.

 * 최근 뉴스기사 Top3:
    ㆍ 2025/04/17 Hi, robot: Half of all internet traffic now automated
    ㆍ 2025/04/17 Exploiting SMS: Threat Actors Use Social Engineering to Target Companies
    ㆍ 2025/04/17 6,000 WordPress Sites Affected by Arbitrary File Move Vulnerability in Drag and Drop Multiple File Upload for WooCommerce WordPress Plugin

Trend graph by period


Related keyword cloud
Top 100
# Trend Count Comparison
1Malware 45 ▼ -5 (-11%)
2Exploit 36 ▲ 1 (3%)
3Update 34 ▲ 3 (9%)
4Vulnerability 31 ▲ 1 (3%)
5Report 30 ▲ 2 (7%)
6attack 25 ▲ 3 (12%)
7Campaign 21 ▼ -6 (-29%)
8Microsoft 21 ▲ 7 (33%)
9RCE 20 ▲ new
10Phishing 19 - 0 (0%)
11target 19 ▼ -5 (-26%)
12United States 18 ▼ -5 (-28%)
13Windows 17 - 0 (0%)
14Victim 17 ▼ -2 (-12%)
15Advertising 16 ▼ -4 (-25%)
16Operation 12 ▼ -2 (-17%)
17Email 12 ▼ -6 (-50%)
18intelligence 12 ▼ -5 (-42%)
19c&c 12 ▼ -1 (-8%)
20Ransomware 11 - 0 (0%)
21IoC 10 - 0 (0%)
22Criminal 9 ▼ -3 (-33%)
23Software 9 ▼ -10 (-111%)
24Kaspersky 9 ▲ 2 (22%)
25CVE 9 ▲ 4 (44%)
26China 8 ▲ 2 (25%)
27Russia 8 ▲ 3 (38%)
28hijack 7 ▲ 6 (86%)
29CVSS 6 ▼ -1 (-17%)
30ZeroDay 6 ▲ 1 (17%)
31Telegram 6 ▲ 4 (67%)
32Linux 6 ▲ 3 (50%)
33file 5 ▲ 3 (60%)
34FortiGate 5 ▲ new
35GitHub 5 ▼ -4 (-80%)
36powershell 5 ▼ -2 (-40%)
37Fortinet 5 ▲ 3 (60%)
38Java 5 ▼ -1 (-20%)
39North Korea 5 ▲ 2 (40%)
40Browser 5 ▼ -3 (-60%)
41AI 5 - 0 (0%)
42Cryptocurrency 5 ▲ 1 (20%)
43Government 5 ▲ 3 (60%)
44GameoverP2P 5 - 0 (0%)
45Ucraina 4 ▲ new
46malicious 4 ▼ -2 (-50%)
47Check Point 4 ▲ 3 (75%)
48Australia 4 ▲ new
49United Kingdom 4 ▲ 3 (75%)
50Education 4 ▼ -5 (-125%)
51hacking 4 ▼ -2 (-50%)
52access 4 ▲ 1 (25%)
53Cisco 4 ▲ 3 (75%)
54Android 4 ▼ -1 (-25%)
55Hijacking 4 ▲ new
56Social Engineering 4 ▼ -4 (-100%)
57Password 4 ▼ -5 (-125%)
58EDR 4 - 0 (0%)
59NetWireRC 4 ▼ -1 (-25%)
60Cobalt Strike 4 - 0 (0%)
61Vawtrak 4 ▲ 2 (50%)
62DDoS 3 ▲ 1 (33%)
63Supply chain 3 ▼ -3 (-100%)
64DYEPACK 3 ▲ 1 (33%)
65Zero Trust 3 ▲ 2 (67%)
66PoC 3 ▲ 1 (33%)
67Twitter 3 ▼ -3 (-100%)
68Anonymous 3 ▲ new
69DNS 3 - 0 (0%)
70Backdoor 3 ▼ -4 (-133%)
71LinkedIn 3 ▼ -2 (-67%)
72Distribution 3 ▼ -4 (-133%)
73Iran 3 ▲ new
74Stealer 3 ▼ -1 (-33%)
75Taiwan 3 ▲ 2 (67%)
76Google 3 ▼ -9 (-300%)
77Chrome 3 - 0 (0%)
78Europe 3 ▲ new
79VirusTotal 3 - 0 (0%)
80plugin 3 ▼ -1 (-33%)
81WordPress 3 ▲ 1 (33%)
82arrest 3 ▲ 2 (67%)
83Threat 3 ▼ -3 (-100%)
84VBScript 3 ▲ 2 (67%)
85WhatsApp 3 ▲ 1 (33%)
86VPN 2 ▼ -1 (-50%)
87OttoKit 2 ▲ new
88RAT 2 - 0 (0%)
89traffic 2 ▲ new
90harmless 2 ▲ new
91wordfence 2 ▲ 1 (50%)
92Zscaler 2 ▲ new
93Trojan 2 ▼ -4 (-200%)
94MWNEWS 2 ▲ new
95MFA 2 ▼ -2 (-100%)
96RATel 2 ▼ -4 (-200%)
97Apple 2 - 0 (0%)
98Symbolic 2 ▲ new
99Link 2 ▲ 1 (50%)
100Smishing 2 ▲ new
Special keyword group
Top 5
Malware Type
Malware Type

This is the type of malware that is becoming an issue.

Keyword Average Label
Ransomware
11 (33.3%)
GameoverP2P
5 (15.2%)
NetWireRC
4 (12.1%)
Vawtrak
4 (12.1%)
DYEPACK
3 (9.1%)
Attacker & Actors
Attacker & Actors

The status of the attacker or attack group being issued.

Keyword Average Label
Anonymous
3 (75%)
Lazarus
1 (25%)
Attack technique
Technique

This is an attack technique that is becoming an issue.

Keyword Average Label
Exploit
36 (27.5%)
Campaign
21 (16%)
RCE
20 (15.3%)
Phishing
19 (14.5%)
hijack
7 (5.3%)
Country & Company
Country & Company

This is a country or company that is an issue.

Keyword Average Label
Microsoft
21 (16.8%)
United States
18 (14.4%)
Kaspersky
9 (7.2%)
China
8 (6.4%)
Russia
8 (6.4%)
Threat info
Last 5

SNS

(Total : 22)
  Total keyword

Attacker Vulnerability Update CVE Exploit Fortinet Report Malware attack Ransomware hacking Email CVSS Criminal Advertising Password PoC schtasks XSS Windows ChatGPT MFA Phishing ZeroDay RCE powershell North Korea Microsoft Hijacking Victim Campaign Cryptocurrency dprk Lazarus hijack plugin ...

No Title Date
1Cyber_OSINT @Cyber_O51NT
A vulnerability, CVE-2025-24054, related to NTLM hash disclosure via spoofing has been actively exploited since March 19, 2025, allowing attackers to leak user passwords, despite a patch released just days earlier. #CyberSecurity #NTLM https://t.co/89kUTVNtR6		2025.04.17
2The Hacker News @TheHackersNews
???? One task away from total takeover? 4 local privilege escalation flaws found in schtasks.exe—a core part of Windows Task Scheduler. Attackers can: • Bypass UAC • Run SYSTEM-level commands • Erase security logs • Impersonate admins using known passwords. Fix not yet https://t.co/jtm4oCZbNC		2025.04.16
3Kaspersky @kaspersky
Discover how attackers use the polyglot technique to hide malware in a seemingly harmless file ???? https://t.co/KVoBquc60H https://t.co/mmF5DVrlvk		2025.04.16
4Dark Web Informer - Cyber Threat Intelligence @DarkWebInformer
????CVE-2025-29471: Stored XSS PoC Cross Site Scripting vulnerability in Nagios Log Server v.2024R1.3.1 allows a remote attacker to execute arbitrary code via a payload into the Email field. Credit: https://t.co/70CmkIBkSf https://t.co/IWoUeJzVIL		2025.04.15
5The Hacker News @TheHackersNews
???? Alert — A 9.0 CVSS flaw in Gladinet’s CentreStack also affects Triofox—both used for remote access. Attackers exploited it as a zero-day in March, hitting 7 orgs by April 11. ???? Root cause: Hardcoded crypto keys → enabled RCE via PowerShell + DLL sideloading ???? Read: https://t.co/w6EXAZH		2025.04.15

News

(Total : 53)
  Total keyword

Attacker Malware Exploit Report Update Vulnerability attack Campaign Microsoft RCE Phishing United States target Windows Victim Advertising Operation intelligence c&c Email IoC Ransomware Kaspersky Software Russia China Criminal hijack Telegram Linux Browser GitHub Government GameoverP2P Java ZeroDay powershell Vawtrak Australia Cryptocurrency North Korea Cisco NetWireRC United Kingdom Ucraina Social Engineering Education CVSS EDR Android Check Point Cobalt Strike Zero Trust WhatsApp Google Backdoor Taiwan Distribution Anonymous Twitter VirusTotal DDoS Europe DNS LinkedIn VBScript Supply chain DYEPACK Hijacking arrest Chrome CVE Iran Stealer hacking WMI Israel Smishing plugin Canada WordPress IcedID Zscaler Deface VPN Router RAT RATel PoC Downloader Apple YouTube Sliver The Shadow Brokers South Korea ...

No Title Date
1Cascading Shadows: An Attack Chain Approach to Avoid Detection and Complicate Analysis - Unit 422025.04.17
2Hi, robot: Half of all internet traffic now automated - Malware.News2025.04.17
3Exploiting SMS: Threat Actors Use Social Engineering to Target Companies - Malware.News2025.04.17
46,000 WordPress Sites Affected by Arbitrary File Move Vulnerability in Drag and Drop Multiple File Upload for WooCommerce WordPress Plugin - Malware.News2025.04.17
5Experts Uncover Four New Privilege Escalation Flaws in Windows Task Scheduler - The Hacker News2025.04.17

Additional information

No data
No data
No data
No URL CC ASN Co Reporter Date
1https://ama.resourcegate.lol/scar/attacker
attacker 		US USCLOUDFLARENETabus3reports2024.08.10
2https://ama.cuisineupdates.online/scar/attacker
attacker 		US USabus3reports2024.08.10
3https://clp.resourcegate.lol/scar/attacker
attacker 		US USCLOUDFLARENETabus3reports2024.08.10
4https://ama.businesshub.pics/scar/attacker
attacker 		US USabus3reports2024.08.10
5https://clp.newtech.lol/scar/attacker
attacker 		US USabus3reports2024.08.10
View only the last 5
Beta Service, If you select keyword, you can check detailed information.