Cyber Threat Trends

Summary: 2025/05/04 10:35

First reported date: 2010/02/20
Inquiry period : 2025/04/27 10:35 ~ 2025/05/04 10:35 (7 days), 79 search results

전 기간대비 8% 높은 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 Phishing Malware attack Campaign RCE 입니다.
악성코드 유형 Trojan RAT QuasarRAT Stealerium 도 새롭게 확인됩니다.
공격기술 ClickFix ClearFake 도 새롭게 확인됩니다.
기관 및 기업 FBI Spain Cisco 도 새롭게 확인됩니다.
기타 LabHost Uyghur WooCommerce Chrome WordPress 등 신규 키워드도 확인됩니다.

“피싱(Phishing)”이란 ‘개인정보(Private data)를 낚는다(Fishing)’라는 의미의 합성어로, 전화·문자·메신저·가짜사이트 등 전기통신수단을 이용한 비대면거래를 통해 피해자를 기망·공갈함으로써 이용자의 개인정보나 금융정보를 빼낸 후, 타인의 재산을 갈취하는 사기 수법
https://www.easylaw.go.kr/CSP/CnpClsMainBtr.laf?popMenu=ov&amp;amp;csmSeq=1592&amp;amp;ccfNo=

* 최근 뉴스기사 Top3:
    ㆍ 2025/05/04 Threat Actors Use AiTM Attacks with Reverse Proxies to Bypass MFA
    ㆍ 2025/05/03 Venom Spider Uses Server-Side Polymorphism to Weave a Web Around Victims
    ㆍ 2025/05/03 On world password day, Microsoft says fewer passwords, more passkeys

Date range button:

First seen:

Last seen:

Keyword

Trend graph by period

Related keyword cloud

Top 100

#	Trend	Count	Comparison
1	Phishing	79	▲ 6 (8%)
2	Malware	43	▲ 8 (19%)
3	attack	33	▲ 2 (6%)
4	Campaign	28	▲ 3 (11%)
5	Report	28	- 0 (0%)
6	RCE	18	▲ 12 (67%)
7	target	18	▲ 3 (17%)
8	Exploit	17	- 0 (0%)
9	United States	16	▲ 1 (6%)
10	Criminal	16	▲ 8 (50%)
11	Email	15	▼ -5 (-33%)
12	Update	15	▲ 5 (33%)
13	Vulnerability	13	▲ 6 (46%)
14	Microsoft	13	▲ 1 (8%)
15	Advertising	11	▲ 4 (36%)
16	Password	11	▲ 8 (73%)
17	Ransomware	10	▲ 5 (50%)
18	Windows	10	▲ 1 (10%)
19	Social Engineering	9	▲ 3 (33%)
20	Software	9	▼ -1 (-11%)
21	Kaspersky	9	▲ 4 (44%)
22	Russia	9	▲ 3 (33%)
23	Victim	9	▼ -4 (-44%)
24	c&c	8	▲ 4 (50%)
25	hacking	8	▲ 2 (25%)
26	Education	8	▲ 2 (25%)
27	FBI	8	▲ new
28	intelligence	8	- 0 (0%)
29	Operation	7	- 0 (0%)
30	Backdoor	7	▲ 5 (71%)
31	Trojan	7	▲ new
32	IoC	7	▲ 3 (43%)
33	Stealer	7	▲ 3 (43%)
34	AI	7	▲ 3 (43%)
35	powershell	6	▲ 2 (33%)
36	Government	6	▲ 2 (33%)
37	Spear Phishing	6	▲ 5 (83%)
38	Android	6	▲ 4 (67%)
39	LabHost	6	▲ new
40	Google	6	▼ -10 (-167%)
41	MFA	6	▼ -3 (-50%)
42	Cryptocurrency	5	▼ -3 (-60%)
43	Browser	5	▼ -3 (-60%)
44	Uyghur	4	▲ new
45	China	4	▼ -2 (-50%)
46	WooCommerce	4	▲ new
47	Spain	4	▲ new
48	Italy	4	▲ 3 (75%)
49	Linux	4	- 0 (0%)
50	Distribution	4	▲ 1 (25%)
51	payment	4	▲ 1 (25%)
52	Banking	4	▲ 2 (50%)
53	Platform	4	▲ 1 (25%)
54	United Kingdom	4	▲ 3 (75%)
55	Cobalt Strike	4	▲ 3 (75%)
56	Apple	4	▲ 2 (50%)
57	DarkWeb	4	▲ 1 (25%)
58	MWNEWS	4	▼ -2 (-50%)
59	Cisco	4	▲ new
60	Chrome	3	▲ new
61	WordPress	3	▲ new
62	Palo Alto Networks	3	▲ 1 (33%)
63	Recorded Future	3	▲ 2 (67%)
64	RAT	3	▲ new
65	NetWireRC	3	▲ 2 (67%)
66	list	3	▲ new
67	Telegram	3	▼ -2 (-67%)
68	PhaaS	3	▲ 2 (67%)
69	QuasarRAT	3	▲ new
70	Police	3	▲ 2 (67%)
71	APT10	3	▲ new
72	Threat	3	▼ -2 (-67%)
73	fake	3	▲ 1 (33%)
74	securityaffairs	3	▲ new
75	Ucraina	3	▲ 1 (33%)
76	World	3	▲ new
77	Java	3	▼ -1 (-33%)
78	Canada	3	▲ 2 (67%)
79	Attacks	2	▲ 1 (50%)
80	Takedown	2	▲ new
81	India	2	▲ 1 (50%)
82	XDR	2	▲ new
83	device	2	▲ new
84	CVSS	2	▲ new
85	Lumma	2	- 0 (0%)
86	remote	2	▲ new
87	Talos	2	▲ new
88	DYEPACK	2	▲ new
89	Check Point	2	▲ 1 (50%)
90	WhatsApp	2	▲ 1 (50%)
91	ZeroDay	2	▼ -2 (-100%)
92	DarkWatchman	2	▲ new
93	default	2	▲ new
94	Discord	2	- 0 (0%)
95	GitHub	2	▼ -1 (-50%)
96	passkey	2	▲ new
97	Stealerium	2	▲ new
98	ClickFix	2	▲ new
99	iCloud	2	▲ new
100	ClearFake	2	▲ new

Special keyword group

Top 5

Malware Type

This is the type of malware that is becoming an issue.

Keyword	Average	Label
Ransomware		10 (26.3%)
Trojan		7 (18.4%)
RAT		3 (7.9%)
NetWireRC		3 (7.9%)
QuasarRAT		3 (7.9%)

Attacker & Actors

The status of the attacker or attack group being issued.

Keyword	Average	Label
VENOM SPIDER		2 (100%)

Technique

This is an attack technique that is becoming an issue.

Keyword	Average	Label
Phishing		79 (41.8%)
Campaign		28 (14.8%)
RCE		18 (9.5%)
Exploit		17 (9%)
Social Engineering		9 (4.8%)

Country & Company

This is a country or company that is an issue.

Keyword	Average	Label
United States		16 (12.7%)
Microsoft		13 (10.3%)
Kaspersky		9 (7.1%)
Russia		9 (7.1%)
FBI		8 (6.3%)

Threat info

Last 5

SNS

(Total : 30)

Total keyword

Phishing attack Campaign Malware FBI Report Backdoor Trojan target hacking Email MFA Stealer Microsoft Password Exploit Update RCE Hijacking powershell Advertising Taiwan IoC Spear Phishing ClearFake Japan US Trend Micro Operation c&c United States hijack Browser Social Engineering Stealerium ClickFix APT Kaspersky Police ...

No	Title	Date
1	Microsoft Security @msftsecurity Sick of password resets and security risks? Meet passkeys—a faster, safer sign-in method with multi-factor authentication, phishing resistance, and data breach protection. https://t.co/dDrLEe1bT9	2025.05.02
2	Kaspersky @kaspersky Did you know every file, photo, or video you share contains hidden data—metadata? ???? What’s it really for, and do we need it? Let’s break it down ⇒ https://t.co/klti0OgW3g #Cybersecurity #metadata #phishing #privacy https://t.co/6s0Y2qkgFD	2025.05.02
3	Cyber_OSINT @Cyber_O51NT The FBI has disclosed 42,000 phishing domains linked to the LabHost operation in a bid to assist the security community. #Phishing #CyberSecurity https://t.co/vsxNBsUAG8	2025.05.02
4	The Hacker News @TheHackersNews ???? New Threat Unpacked: MintsLoader + GhostWeaver! A stealthy loader (MintsLoader) is being used in real-world phishing attacks to silently drop GhostWeaver—a persistent PowerShell-based trojan stealing browser data & hijacking systems. ⚠️ Tactics include: — ClickFix social https://t.co/qB5O	2025.05.02
5	The Hacker News @TheHackersNews ???? Microsoft goes passwordless by default for all new accounts. No more passwords at sign-up—just passkeys, using biometrics or device PINs. It's phishing-resistant, backed by FIDO standards. Existing users? You can remove your password now from settings. Learn more: https://t.co/S0mHWXEGry	2025.05.02

News

(Total : 49)

Total keyword

Phishing Malware attack Report Campaign Criminal RCE Attacker United States Exploit target Update Email Vulnerability Microsoft Advertising Ransomware Windows Password Victim Software Education Russia Kaspersky Social Engineering intelligence c&c Android IoC Operation Government Cryptocurrency Spear Phishing Google powershell Stealer hacking DarkWeb Italy Cobalt Strike Banking payment Distribution Linux China MFA Cisco Browser Apple Java FBI Spain Backdoor APT10 Palo Alto Networks United Kingdom Telegram Recorded Future Trojan Chrome Canada Ucraina QuasarRAT Europe conference ZeroDay South Korea VENOM SPIDER France WhatsApp NetWireRC APT32 Stealc XDR Forensics PlugX VirusTotal Attacks Lumma iPhone LockBit LinkedIn Discord GitHub RAT Police Smishing India PDB Check Point RATel WordPress Takedown ...

No	Title	Date
1	Threat Actors Use AiTM Attacks with Reverse Proxies to Bypass MFA - Malware.News	2025.05.04
2	Venom Spider Uses Server-Side Polymorphism to Weave a Web Around Victims - Malware.News	2025.05.03
3	On world password day, Microsoft says fewer passwords, more passkeys - Malware.News	2025.05.03
4	SKT 해킹 배후에 중국 그림자?.. 악명 떨치는 중국계 해킹 조직들 - 시큐리티팩트	2025.05.02
5	MintsLoader Drops GhostWeaver via Phishing, ClickFix — Uses DGA, TLS for Stealth Attacks - The Hacker News	2025.05.02

Additional information

No	Title	Date
1	틱톡, 유럽 사용자 데이터 중국 전송.. 8000억대 벌금 - 시큐리티팩트	2025.05.03
2	Saskatoon children’s hospital nurse unlawfully snooped on records of 314 patients: privacy report - Malware.News	2025.05.03
3	Dating app Raw exposed users’ location data and personal information - Malware.News	2025.05.03
4	Hacker hired Telangana man to courier threats to Star Health Insurance MD - Malware.News	2025.05.03
5	Acadian Ambulance Seeks Dismissal of Data Breach Lawsuit - Malware.News	2025.05.03
View only the last 5

No	Title	Date
1	On world password day, Microsoft says fewer passwords, more passkeys - Malware.News	2025.05.03
2	On world password day, Microsoft says fewer passwords, more passkeys - Malware.News	2025.05.03
3	SKT 해킹 배후에 중국 그림자?.. 악명 떨치는 중국계 해킹 조직들 - 시큐리티팩트	2025.05.02
4	SKT 해킹 배후에 중국 그림자?.. 악명 떨치는 중국계 해킹 조직들 - 시큐리티팩트	2025.05.02
5	MintsLoader Drops GhostWeaver via Phishing, ClickFix — Uses DGA, TLS for Stealth Attacks - The Hacker News	2025.05.02
View only the last 5

No data

No	Category	URL	CC	ASN Co	Date
1	phishing	https://www.w3counter.com/track/pv?id=151293	US	CLOUDFLARENET	2024.06.19
2	phishing	https://www.w3counter.com/tracker.js?id=151293	US		2024.06.19

No	URL	CC	ASN Co	Reporter	Date
1	https://drive.google.com/uc?export=download&id=1pvS-c0vJMrTDuJvYES8UJ3CBHk5FC_Xq phishing	US	GOOGLE	JAMESWT_MHT	2025.03.03
2	https://drive.google.com/uc?export=download&id=1hUf5CK2m4PcshRxUmPgroynM1IYMgtzX phishing	US	GOOGLE	JAMESWT_MHT	2025.03.03
3	https://drive.usercontent.google.com/u/0/uc?id=1oVYWzJi9Tw6x0zGRa8di76JxbjhDHWgd&export=download phishing	US	GOOGLE	JAMESWT_MHT	2025.03.03
4	https://markitos.shop/riiw2.mp4 Fake captcha Lumma Stealer stager phishing			anonymous	2025.01.21
5	https://threemanshop.com/jsnom.js js phishing	US	CLOUDFLARENET	NDA0E	2024.06.25
View only the last 5

Beta Service, If you select keyword, you can check detailed information.