Cyber Threat Trends

Summary: 2025/04/17 13:07

First reported date: 2012/08/22
Inquiry period : 2025/04/10 13:07 ~ 2025/04/17 13:07 (7 days), 33 search results

전 기간대비 15% 높은 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 Linux Update Report Campaign Exploit 입니다.
악성코드 유형 Ransomware AsyncRAT Vawtrak CoreDN QakBot Black Basta 도 새롭게 확인됩니다.
공격자 Anonymous 도 새롭게 확인됩니다.
공격기술 RCE 도 새롭게 확인됩니다.
기관 및 기업 CISA Trend Micro United Kingdom US Cloudflare Cisco McAfee Canada South Korea Egypt 도 새롭게 확인됩니다.
기타 BPFDoor amp 공격 Docker controller 등 신규 키워드도 확인됩니다.

* 최근 뉴스기사 Top3:
    ㆍ 2025/04/17 엔디비아 'AI 심장부' GPU에 보안 구멍.. '즉시 패치' 비상
    ㆍ 2025/04/16 How Indicators of Compromise, Attack, and Behavior Help Spot and Stop Cyber Threats
    ㆍ 2025/04/16 New BPFDoor Controller Enables Stealthy Lateral Movement in Linux Server Attacks

Date range button:

First seen:

Last seen:

Keyword

Trend graph by period

Related keyword cloud

Top 100

#	Trend	Count	Comparison
1	Linux	33	▲ 5 (15%)
2	Malware	13	- 0 (0%)
3	Update	11	▲ 3 (27%)
4	Windows	10	- 0 (0%)
5	Report	9	▲ 1 (11%)
6	Campaign	9	▲ 4 (44%)
7	Exploit	8	▲ 4 (50%)
8	Vulnerability	8	▲ 5 (63%)
9	target	8	▼ -1 (-13%)
10	attack	7	- 0 (0%)
11	Kernel	7	▲ 6 (86%)
12	RCE	7	▲ new
13	United States	6	▲ 1 (17%)
14	Phishing	6	▲ 2 (33%)
15	hacking	5	▲ 3 (60%)
16	Advertising	5	▼ -1 (-20%)
17	Victim	5	▲ 2 (40%)
18	Android	5	▼ -1 (-20%)
19	intelligence	5	▲ 1 (20%)
20	ZeroDay	4	▲ 2 (50%)
21	Email	4	▲ 2 (50%)
22	Backdoor	4	▲ 3 (75%)
23	NetWireRC	4	▲ 2 (50%)
24	Microsoft	4	▼ -1 (-25%)
25	Ransomware	3	▲ new
26	BPFDoor	3	▲ new
27	IoC	3	▼ -2 (-67%)
28	Distribution	3	- 0 (0%)
29	Schwachstellen	3	▼ -1 (-33%)
30	RAT	3	▲ 2 (67%)
31	Software	3	- 0 (0%)
32	amp	3	▲ new
33	China	3	- 0 (0%)
34	c&c	3	▼ -1 (-33%)
35	Education	3	- 0 (0%)
36	CISA	3	▲ new
37	Operation	2	▼ -1 (-50%)
38	Red Hat	2	▼ -1 (-50%)
39	Cobalt Strike	2	▲ 1 (50%)
40	Denial	2	▲ 1 (50%)
41	Trend Micro	2	▲ new
42	powershell	2	- 0 (0%)
43	CVSS	2	▲ 1 (50%)
44	Anonymous	2	▲ new
45	GameoverP2P	2	▼ -2 (-100%)
46	공격	2	▲ new
47	United Kingdom	2	▲ new
48	GitHub	2	▼ -1 (-50%)
49	VirusTotal	2	▲ 1 (50%)
50	AsyncRAT	2	▲ new
51	network	2	▲ 1 (50%)
52	Trojan	2	- 0 (0%)
53	Docker	2	▲ new
54	Mehrere	2	▼ -1 (-50%)
55	controller	2	▲ new
56	Known	2	▲ new
57	US	2	▲ new
58	securityaffairs	2	▲ new
59	Cloudflare	2	▲ new
60	Kubernetes	2	▲ 1 (50%)
61	Vawtrak	2	▲ new
62	Trends	1	▲ new
63	Malicious Traffic	1	▲ new
64	UNC	1	▲ new
65	aka	1	▲ new
66	Uteus	1	▲ new
67	GhostRAT	1	▲ new
68	Cisco	1	▲ new
69	Runaway	1	▲ new
70	McAfee	1	▲ new
71	ANY	1	- 0 (0%)
72	Suricata	1	▲ new
73	RUN	1	▲ new
74	MacOS	1	▲ new
75	YARA	1	▲ new
76	Canada	1	▲ new
77	Telegram	1	▲ new
78	Social Engineering	1	- 0 (0%)
79	Cobalt	1	▲ new
80	problem	1	▲ new
81	Fu	1	▲ new
82	kind	1	▲ new
83	Takedown	1	▲ new
84	CoreDN	1	▲ new
85	Sliver	1	▲ new
86	rule	1	▲ new
87	Stealer	1	▼ -2 (-200%)
88	Schwachstelle	1	- 0 (0%)
89	Service	1	▲ new
90	QakBot	1	▲ new
91	Black Basta	1	▲ new
92	Cyber Kill Chain	1	▲ new
93	RATel	1	- 0 (0%)
94	detection	1	- 0 (0%)
95	SOC	1	▲ new
96	EDR	1	▲ new
97	engineering	1	▲ new
98	time	1	▲ new
99	South Korea	1	▲ new
100	Egypt	1	▲ new

Special keyword group

Top 5

Malware Type

This is the type of malware that is becoming an issue.

Keyword	Average	Label
NetWireRC		4 (16.7%)
Ransomware		3 (12.5%)
RAT		3 (12.5%)
GameoverP2P		2 (8.3%)
AsyncRAT		2 (8.3%)

Attacker & Actors

The status of the attacker or attack group being issued.

Keyword	Average	Label
Anonymous		2 (100%)

Technique

This is an attack technique that is becoming an issue.

Keyword	Average	Label
Campaign		9 (21.4%)
Exploit		8 (19%)
RCE		7 (16.7%)
Phishing		6 (14.3%)
hacking		5 (11.9%)

Country & Company

This is a country or company that is an issue.

Keyword	Average	Label
United States		6 (17.6%)
Microsoft		4 (11.8%)
China		3 (8.8%)
CISA		3 (8.8%)
Trend Micro		2 (5.9%)

Threat info

Last 5

SNS

(Total : 8)

Total keyword

Linux Exploit CISA United States Windows US hacking Malware China Cloudflare RCE Backdoor MacOS Government Ransomware Phishing iocs Education target IoC apple Android attack

No	Title	Date
1	The Hacker News @TheHackersNews ???? BPFDoor is back—with a stealthy new controller in play. A fresh wave of BPFDoor attacks has hit telecom, finance & retail sectors in ???????????????????????????????????????? — using a stealth controller that opens reverse shells & moves laterally inside Linux networks. ???? Read → htt	2025.04.16
2	Threat Intelligence @threatintel #ThreatProtection #BPFDoor #Linux #backdoor, read about Symantec's coverage: https://t.co/c68yI1Q8bm	2025.04.15
3	Kaspersky @kaspersky Your phone might be tracking you—for hackers. And #Apple’s network is helping. ???? Apple’s Find My network can be exploited to remotely track other vendors’ #Android, #Windows, and #Linux devices. Full story ⇒ https://t.co/VtKrEF0DRS #AirTag #CyberSecurity #iOS https://t.co/fUAtl5qLsB	2025.04.15
4	The Hacker News @TheHackersNews ⚠️ UNC5174 (aka Uteus), tied to China, is quietly breaching Linux & macOS systems using SNOWLIGHT malware + a fake Cloudflare app (VShell). ???? Targets: 20+ nations \| Sectors: Gov, finance, defense ???? Tactics: Open-source tools, fileless payloads, fake authenticator apps ???? Risk: https://t	2025.04.15
5	Dark Web Informer - Cyber Threat Intelligence @DarkWebInformer ????Linux Terminal Shortcuts https://t.co/DgV6BLnQ9N	2025.04.14

News

(Total : 25)

Total keyword

Linux Malware Update Report Campaign Vulnerability Windows target RCE attack Attacker Victim Advertising intelligence Phishing Exploit ZeroDay Android Email NetWireRC Microsoft United States RAT Software Backdoor c&c Distribution hacking Docker Vawtrak Trojan AsyncRAT Cobalt Strike IoC China powershell Ransomware Trend Micro GameoverP2P Anonymous Kubernetes CVSS VirusTotal GitHub Education Operation United Kingdom Red Hat McAfee The Shadow Brokers Cisco Canada Telegram Social Engineering Cobalt Takedown Malicious Traffic Sliver Cloudflare Criminal QakBot Black Basta Cyber Kill Chain RATel South Korea Egypt Hong Kong UNIX 패치 Stealer Cryptocurrency Miner Forensics CoreDN DYEPACK hijack ...

No	Title	Date
1	엔디비아 'AI 심장부' GPU에 보안 구멍.. '즉시 패치' 비상 - 시큐리티팩트	2025.04.17
2	How Indicators of Compromise, Attack, and Behavior Help Spot and Stop Cyber Threats - Malware.News	2025.04.16
3	New BPFDoor Controller Enables Stealthy Lateral Movement in Linux Server Attacks - The Hacker News	2025.04.16
4	Streamlining detection engineering in security operation centers - Malware.News	2025.04.16
5	[NEU] [mittel] Linux Kernel: Schwachstelle ermöglicht Denial of Service - IT Sicherheitsnews	2025.04.16

Additional information

No	Title	Date
1	엔디비아 'AI 심장부' GPU에 보안 구멍.. '즉시 패치' 비상 - 시큐리티팩트	2025.04.17
2	Hi, robot: Half of all internet traffic now automated - Malware.News	2025.04.17
3	Zoom Sees Outage With 50,000 Users Reporting Availability Issues - Bloomberg Technology	2025.04.17
4	Nude photos and names: KU Health and Kansas hospital sued for data breach - Malware.News	2025.04.17
5	DeepSeek Poses ‘Profound’ Security Threat, US House Panel Claims - Bloomberg Technology	2025.04.17
View only the last 5

No	Title	Date
1	엔디비아 'AI 심장부' GPU에 보안 구멍.. '즉시 패치' 비상 - 시큐리티팩트	2025.04.17
2	New BPFDoor Controller Enables Stealthy Lateral Movement in Linux Server Attacks - The Hacker News	2025.04.16
3	UNC5174’s evolution in China’s ongoing cyber warfare: From SNOWLIGHT to VShell - Malware.News	2025.04.15
4	UNC5174’s evolution in China’s ongoing cyber warfare: From SNOWLIGHT to VShell - Malware.News	2025.04.15
5	UNC5174’s evolution in China’s ongoing cyber warfare: From SNOWLIGHT to VShell - Malware.News	2025.04.15
View only the last 5

No data

No	URL	CC	Reporter	Date
1	http://142.171.103.249:8888/supershell/compile/download/xd elf linux supershell	CA	Try0	2024.08.23
2	http://160.181.http://160.163:8888/LinuxTF ddos linux		Try0	2024.05.08
3	http://160.181.http://160.166:8888/LinuxTF ddos linux		Try0	2024.05.08
4	http://160.181.http://160.165:8888/LinuxTF ddos linux		Try0	2024.05.08
5	http://160.181.http://160.164:8888/LinuxTF ddos linux		Try0	2024.05.08
View only the last 5

Beta Service, If you select keyword, you can check detailed information.