Cyber Threat Trends

Summary: 2025/04/19 14:06

First reported date: 2011/03/29
Inquiry period : 2025/04/12 14:06 ~ 2025/04/19 14:06 (7 days), 11 search results

전 기간대비 -9% 낮은 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 Windows Update 입니다.
악성코드 유형 TONESHELL Trojan BlackSuit 도 새롭게 확인됩니다.
공격기술 Backdoor hijack Exploit 도 새롭게 확인됩니다.
기관 및 기업 China Europe Zscaler 도 새롭게 확인됩니다.
기타 Side Request SSRF UNIX GitHub 등 신규 키워드도 확인됩니다.

* 최근 뉴스기사 Top3:
    ㆍ 2025/04/17 Latest Mustang Panda Arsenal: ToneShell and StarProxy | P1
    ㆍ 2025/04/15 [UPDATE] [mittel] Mattermost Server: Mehrere Schwachstellen
    ㆍ 2025/04/15 [webapps] IBMi Navigator 7.5 - Server Side Request Forgery (SSRF)

Date range button:

First seen:

Last seen:

Keyword

Trend graph by period

Related keyword cloud

Top 100

#	Trend	Count	Comparison
1	SERVER	11	▼ -1 (-9%)
2	Windows	4	▲ 1 (25%)
3	Update	3	▲ 2 (67%)
4	Malware	2	- 0 (0%)
5	Side	2	▲ new
6	Request	2	▲ new
7	target	2	▼ -1 (-50%)
8	Microsoft	2	▼ -2 (-100%)
9	SSRF	2	▲ new
10	UNIX	1	▲ new
11	Government	1	- 0 (0%)
12	Advertising	1	- 0 (0%)
13	GitHub	1	▲ new
14	Kosovo	1	▲ new
15	TONESHELL	1	▲ new
16	EDR	1	▲ new
17	China	1	▲ new
18	Victim	1	▲ new
19	c&c	1	- 0 (0%)
20	IoC	1	▲ new
21	Backdoor	1	▲ new
22	Europe	1	▲ new
23	hijack	1	▲ new
24	Trojan	1	▲ new
25	MUSTANG PANDA	1	▲ new
26	keylogger	1	▲ new
27	Operation	1	▼ -1 (-100%)
28	C2	1	▲ new
29	file	1	▲ new
30	StarProxy	1	▲ new
31	Threat	1	▲ new
32	critical	1	▲ new
33	Exchange	1	- 0 (0%)
34	SharePoint	1	- 0 (0%)
35	Exploit	1	▲ new
36	RCE	1	- 0 (0%)
37	Zscaler	1	▲ new
38	Improper	1	▲ new
39	Cobalt Strike	1	▲ new
40	Artikel	1	▲ new
41	Alert	1	▼ -1 (-100%)
42	KILLERS	1	- 0 (0%)
43	BlackSuit	1	▲ new
44	httpstco	1	- 0 (0%)
45	break	1	▲ new
46	web	1	▲ new
47	MWNEWS	1	▲ new
48	Twelve	1	▲ new
49	traffic	1	▲ new
50	Mattermost	1	▲ new
51	Schwachstellen	1	▼ -1 (-100%)
52	Mehrere	1	▼ -1 (-100%)
53	QRadar Security Suite	1	▲ new
54	emergency	1	▲ new
55	IBMi	1	▲ new
56	Navigator	1	▲ new
57	Plane	1	▲ new
58	forgery	1	▲ new
59	DomainController	1	▲ new
60	sind	1	▲ new
61	nach	1	▲ new
62	WebMethods	1	▲ new
63	Integration	1	▲ new
64	DDoS	1	▼ -1 (-100%)
65	Access	1	▲ new
66	httpstcoay	1	▲ new
67	attack	1	- 0 (0%)

Special keyword group

Top 5

Malware Type

This is the type of malware that is becoming an issue.

Keyword	Average	Label
TONESHELL		1 (33.3%)
Trojan		1 (33.3%)
BlackSuit		1 (33.3%)

Attacker & Actors

The status of the attacker or attack group being issued.

Keyword	Average	Label

Technique

This is an attack technique that is becoming an issue.

Keyword	Average	Label
Backdoor		1 (20%)
hijack		1 (20%)
Exploit		1 (20%)
RCE		1 (20%)
DDoS		1 (20%)

Country & Company

This is a country or company that is an issue.

Keyword	Average	Label
Microsoft		2 (33.3%)
Government		1 (16.7%)
China		1 (16.7%)
Europe		1 (16.7%)
Zscaler		1 (16.7%)

Threat info

Last 5

SNS

(Total : 4)

Total keyword

Windows RCE Exploit Update DDoS Microsoft target BlackSuit attack

No	Title	Date
1	Microsoft Threat Intelligence @MsftSecIntel Threat actors have consistently exploited critical vulnerabilities in Exchange Server and SharePoint Server that enable them to gain a persistent foothold inside the target. Such attacks have been observed to lead to remote code execution, lateral movement, and exfiltration of	2025.04.18
2	BleepingComputer @BleepinComputer New Windows Server emergency updates fix container launch issue - @serghei https://t.co/ay9lKdtcy4 https://t.co/ay9lKdtcy4	2025.04.17
3	BleepingComputer @BleepinComputer Microsoft: Windows Server 2025 restarts break connectivity on some DCs - @serghei https://t.co/2Y4p2xXG1I https://t.co/2Y4p2xXG1I	2025.04.14
4	FalconFeeds.io @FalconFeedsio ???? DDoS Alert ???? SERVER KILLERS claims to have targeted multiple website in Kosovo. • Kosovo Chamber of Mediators • Spitali Royal Medical • American Hospital Kosova • National Institute of Public Health of Kosovo • Independent Oversight Council for the Kosovo Civil Service https://t.co/OmxI7Nj	2025.04.13

News

(Total : 7)

Total keyword

Malware Update Windows SSRF c&c Victim Attacker China EDR TONESHELL UNIX GitHub Advertising Government Zscaler Backdoor hijack Trojan Europe target keylogger Operation C2 IoC MUSTANG PANDA QRadar Security Suite Cobalt Strike Microsoft

No	Title	Date
1	Latest Mustang Panda Arsenal: ToneShell and StarProxy \| P1 - Malware.News	2025.04.17
2	[remote] WebMethods Integration Server 10.15.0.0000-0092 - Improper Access on Login Page - Exploit-DB.com	2025.04.16
3	[UPDATE] [mittel] Mattermost Server: Mehrere Schwachstellen - IT Sicherheitsnews	2025.04.15
4	Windows Server 2025: Domain-Controller sind nach Neustart nicht mehr erreichbar - IT Sicherheitsnews	2025.04.15
5	[webapps] Plane 0.23.1 - Server side request forgery (SSRF) - Exploit-DB.com	2025.04.15

Additional information

No	Title	Date
1	Tesla to Delay Production of Cheaper EVs, Reuters Reports - Bloomberg Technology	2025.04.19
2	When Vulnerability Information Flows are Vulnerable Themselves - Malware.News	2025.04.19
3	CISA warns threat hunting staff of end to Google, Censys contracts as agency cuts set in - Malware.News	2025.04.19
4	Radiology practice reportedly working with FBI after ‘data security incident’ - Malware.News	2025.04.19
5	Text scams grow to steal hundreds of millions of dollars - Malware.News	2025.04.19
View only the last 5

No	Title	Date
1	Latest Mustang Panda Arsenal: ToneShell and StarProxy \| P1 - Malware.News	2025.04.17
2	Windows Server 2025: Domain-Controller sind nach Neustart nicht mehr erreichbar - IT Sicherheitsnews	2025.04.15
3	Stopping attacks against on-premises Exchange Server and SharePoint Server with AMSI - Microsoft Security...	2025.04.10
4	[NEU] [hoch] Microsoft Office: Mehrere Schwachstellen - IT Sicherheitsnews	2025.04.09
5	The SQL Server Crypto Detour - Malware.News	2025.04.09
View only the last 5

No data

Beta Service, If you select keyword, you can check detailed information.