Cyber Threat Trends

Summary: 2025/04/17 15:28

First reported date: 2012/12/19
Inquiry period : 2025/04/10 15:28 ~ 2025/04/17 15:28 (7 days), 35 search results

전 기간대비 49% 높은 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 Ucraina target Ukraine Russia Campaign 입니다.
악성코드 유형 Ransomware 도 새롭게 확인됩니다.
공격자 Gamaredon Anonymous 도 새롭게 확인됩니다.
공격기술 RCE APT Exploit Spear Phishing MalSpam 도 새롭게 확인됩니다.
기관 및 기업 Australia Cloudflare Microsoft South Korea Japan North Korea Taiwan Türkiye Check Point 우크라이나 독일 도 새롭게 확인됩니다.
기타 Update Victim Vulnerability Windows Software 등 신규 키워드도 확인됩니다.

* 최근 뉴스기사 Top3:
    ㆍ 2025/04/17 어나니머스, 러시아 해킹.. 국가 DB '전체 분량' 털렸다
    ㆍ 2025/04/16 CVE-2025-24054, NTLM Exploit in the Wild
    ㆍ 2025/04/16 Monthly Threat Actor Group Intelligence Report, February 2025 (ENG)

Date range button:

First seen:

Last seen:

Keyword

Trend graph by period

Related keyword cloud

Top 100

#	Trend	Count	Comparison
1	Ucraina	35	▲ 17 (49%)
2	target	15	▲ 5 (33%)
3	Ukraine	13	▲ 6 (46%)
4	Russia	13	▲ 10 (77%)
5	Campaign	11	▲ 7 (64%)
6	Malware	10	▲ 4 (40%)
7	United States	9	▲ 7 (78%)
8	Kaspersky	8	▲ 6 (75%)
9	Update	8	▲ new
10	Report	7	- 0 (0%)
11	United Kingdom	6	▲ 3 (50%)
12	Australia	6	▲ new
13	Victim	6	▲ new
14	China	5	▲ 2 (40%)
15	Vulnerability	5	▲ new
16	hacking	5	▲ 2 (40%)
17	Cloudflare	5	▲ new
18	Phishing	5	▲ 1 (20%)
19	DDoS	5	▲ 2 (40%)
20	attack	5	▼ -2 (-40%)
21	Microsoft	4	▲ new
22	Alert	4	▼ -3 (-75%)
23	Gamaredon	4	▲ new
24	Government	4	- 0 (0%)
25	South Korea	3	▲ new
26	Windows	3	▲ new
27	Software	3	▲ new
28	Twitter	3	▲ 2 (67%)
29	Germany	3	▲ 2 (67%)
30	RCE	3	▲ new
31	Japan	3	▲ new
32	powershell	3	▲ 2 (67%)
33	c&c	3	▲ new
34	Military	3	▲ new
35	NortonLifeLock	3	▲ new
36	Operation	3	▲ 2 (67%)
37	Criminal	2	▲ new
38	Israel	2	▼ -2 (-100%)
39	intelligence	2	▲ new
40	amp	2	▲ 1 (50%)
41	Russian	2	▲ new
42	NATO	2	▲ 1 (50%)
43	Ransomware	2	▲ new
44	NoName	2	▼ -4 (-200%)
45	Canada	2	▲ 1 (50%)
46	gt	2	▲ new
47	Advertising	2	▲ new
48	Google	2	▲ 1 (50%)
49	Europe	2	▲ 1 (50%)
50	APT	2	▲ new
51	VBScript	2	▲ new
52	India	2	▲ 1 (50%)
53	Education	2	▲ new
54	mission	2	▲ new
55	Western	2	▲ new
56	Telegram	2	▲ 1 (50%)
57	North Korea	2	▲ new
58	ZeroDay	2	▲ new
59	Taiwan	2	▲ new
60	WhatsApp	2	▲ new
61	MWNEWS	2	▲ new
62	Exploit	2	▲ new
63	Türkiye	2	▲ new
64	Android	2	▲ new
65	Check Point	2	▲ new
66	Commerce	1	▲ new
67	HIMARS	1	▲ new
68	conventionaldecidedopticalnewarktrycloudflarecom	1	▲ new
69	f7b54b6010575787776cc4fb045371df70873135517900a6f015ac26b995c79b	1	▲ new
70	fa82cd0d7bd46aa8e6757bcd5c974c77a6a54866d39ae7a4563e6782ce1169de	1	▲ new
71	Industry	1	▲ new
72	much	1	▲ new
73	Al	1	▲ new
74	Airport	1	▲ new
75	International	1	▲ new
76	록히드	1	▲ new
77	마틴	1	▲ new
78	httpstcobVrfVJpael	1	▲ new
79	limitless	1	▲ new
80	우크라이나	1	▲ new
81	h4rmsw4yX	1	▲ new
82	지원	1	▲ new
83	Chamber	1	▲ new
84	군사	1	▲ new
85	clerktanassistedthoughtstrycloudflarecom	1	▲ new
86	시스템	1	▲ new
87	독일	1	▲ new
88	연합	1	▲ new
89	로켓	1	▲ new
90	Sorry	1	▲ new
91	access	1	▲ new
92	Odessa	1	▲ new
93	bb1ae7d1360f5d2bd19ea6c97b689bb55f5c3e5d829ee6c801e767f8363d9a13	1	▲ new
94	Anonymous	1	▲ new
95	Insurance	1	▲ new
96	Spear Phishing	1	▲ new
97	MalSpam	1	▲ new
98	Email	1	▼ -1 (-100%)
99	sherrodim	1	▲ new
100	Star	1	▲ new

Special keyword group

Top 5

Malware Type

This is the type of malware that is becoming an issue.

Keyword	Average	Label
Ransomware		2 (100%)

Attacker & Actors

The status of the attacker or attack group being issued.

Keyword	Average	Label
Gamaredon		4 (50%)
Anonymous		1 (12.5%)
어나니머스		1 (12.5%)
APT28		1 (12.5%)
Shuckworm		1 (12.5%)

Technique

This is an attack technique that is becoming an issue.

Keyword	Average	Label
Campaign		11 (30.6%)
hacking		5 (13.9%)
Phishing		5 (13.9%)
DDoS		5 (13.9%)
RCE		3 (8.3%)

Country & Company

This is a country or company that is an issue.

Keyword	Average	Label
Ucraina		35 (23.8%)
Ukraine		13 (8.8%)
Russia		13 (8.8%)
United States		9 (6.1%)
Kaspersky		8 (5.4%)

Threat info

Last 5

SNS

(Total : 19)

Total keyword

Ucraina ukraine target DDoS Cloudflare Campaign Gamaredon Russia Kaspersky Criminal United Kingdom APT Phishing Spear Phishing Government Google RCE Israel symantec hacking India UN WhatsApp

No	Title	Date
1	Microsoft Threat Intelligence @MsftSecIntel @sherrod_im Star Blizzard sent their targets spear-phishing messages that included a quick response (QR) code purporting to direct users to join a WhatsApp group on “the latest non-governmental initiatives aimed at supporting Ukraine NGOs.”	2025.04.16
2	FalconFeeds.io @FalconFeedsio ???? DDoS Alert ???? Al Ahad claims to have targeted multiple websites in Ukraine. -Kyiv Sikorsky International Airport (Zhuliany) -Odesa International Airport -Kharkiv International Airport -Dnipro International Airport https://t.co/dNtpaHChAF	2025.04.15
3	MalwareHunterTeam @malwrhunterteam @h4rmsw4yX Sorry, I not have much access (nor think I ever will as it would be too damaging for some it seems... ????‍♂️) to do limitless testings, so can't really tell. Maybe just start from all .hta files seen from Ukraine and if that gives too much FPs, try to filter more based on what easily	2025.04.15
4	MalwareHunterTeam @malwrhunterteam The SSL cert for the ms-coauth.com domain that has the next stage has been given by "Google Trust Services"... ???????????? Google as a trash criminal gang is surely proud of that they are supporting actors doing targeting in Ukraine, especially if it's a Russian APT, right? ????‍♂️ https://t.co/GF9	2025.04.15
5	MalwareHunterTeam @malwrhunterteam "728-3512-19.rar": ad906427ef88f5d55b9ff8d363b6c3bdb34aaef2b1b980f3950e424370893cff -> "728-3512-19.hta": 44cb60c9bb448b33549b2002a84fd56483bbb17fab3f1d861a7f4256a063bbb5 ms-coauth.com Supposedly Russian APT targeting in Ukraine, but for me this is more boring ???? shit than https://t.co/bNUPYndQ	2025.04.15

News

(Total : 16)

Total keyword

Ucraina Russia Malware United States Campaign Update Report Australia Victim Kaspersky Vulnerability China attack target Microsoft Attacker hacking Phishing United Kingdom Twitter Germany Operation Japan South Korea Windows Software c&c Government powershell NATO Advertising RCE Europe intelligence VBScript Canada Ransomware Education Exploit Ukraine Gamaredon Telegram Android North Korea Check Point Taiwan Türkiye ZeroDay WhatsApp Egypt India Italy 독일 우크라이나 YouTube Email 어나니머스 러시아 Anonymous Google Palantir France MalSpam Browser GitHub SMB APT28 German WMI Malicious Traffic Linux IoC Distribution Deface Shuckworm Cloudflare ...

No	Title	Date
1	어나니머스, 러시아 해킹.. 국가 DB '전체 분량' 털렸다 - 시큐리티팩트	2025.04.17
2	CVE-2025-24054, NTLM Exploit in the Wild - Malware.News	2025.04.16
3	Monthly Threat Actor Group Intelligence Report, February 2025 (ENG) - Malware.News	2025.04.16
4	NATO, 팔란티어 'AI 방위 플랫폼' 공식 채택 - 시큐리티팩트	2025.04.16
5	K-방산, 1분기 실적 전년 대비 상승폭 키워 - 시큐리티팩트	2025.04.15

Additional information

No	Title	Date
1	엔디비아 'AI 심장부' GPU에 보안 구멍.. '즉시 패치' 비상 - 시큐리티팩트	2025.04.17
2	Hi, robot: Half of all internet traffic now automated - Malware.News	2025.04.17
3	Zoom Sees Outage With 50,000 Users Reporting Availability Issues - Bloomberg Technology	2025.04.17
4	Nude photos and names: KU Health and Kansas hospital sued for data breach - Malware.News	2025.04.17
5	DeepSeek Poses ‘Profound’ Security Threat, US House Panel Claims - Bloomberg Technology	2025.04.17
View only the last 5

No	Title	Date
1	CVE-2025-24054, NTLM Exploit in the Wild - Malware.News	2025.04.16
2	CVE-2025-24054, NTLM Exploit in the Wild - Malware.News	2025.04.16
3	CVE-2025-24054, NTLM Exploit in the Wild - Malware.News	2025.04.16
4	Monthly Threat Actor Group Intelligence Report, February 2025 (ENG) - Malware.News	2025.04.16
5	Monthly Threat Actor Group Intelligence Report, February 2025 (ENG) - Malware.News	2025.04.16
View only the last 5

No data

Beta Service, If you select keyword, you can check detailed information.