popup

Cyber Threat Trends

  1. Day Month

conference CrowdStrike 북한

Summary: 2025/04/17 13:19

First reported date: 2011/08/17
Inquiry period : 2025/04/10 13:19 ~ 2025/04/17 13:19 (7 days), 16 search results

전 기간대비 44% 높은 트렌드를 보이고 있습니다.
전 기간대비 상승한 Top5 연관 키워드는 plugin WordPress Exploit Vulnerability Update 입니다.
공격기술 RCE hacking 도 새롭게 확인됩니다.
기타 Custom Device OttoKit Defender Admin 등 신규 키워드도 확인됩니다.

 * 최근 뉴스기사 Top3:
    ㆍ 2025/04/17 6,000 WordPress Sites Affected by Arbitrary File Move Vulnerability in Drag and Drop Multiple File Upload for WooCommerce WordPress Plugin
    ㆍ 2025/04/11 Immediate exploitation of high-severity WordPress plugin flaw reported
    ㆍ 2025/04/11 OttoKit WordPress Plugin Admin Creation Vulnerability Under Active Exploitation

Trend graph by period


Related keyword cloud
Top 100
# Trend Count Comparison
1plugin 16 ▲ 7 (44%)
2WordPress 8 ▲ 5 (63%)
3Exploit 6 ▲ 3 (50%)
4Vulnerability 5 ▲ 4 (80%)
5Update 4 ▲ 1 (25%)
6Custom 4 ▲ new
7Device 4 ▲ new
8OttoKit 4 ▲ new
9Defender 3 ▲ new
10RCE 2 ▲ new
11Report 2 - 0 (0%)
12Malware 2 ▼ -2 (-100%)
13Admin 2 ▲ new
14CVSS 2 ▲ 1 (50%)
15attack 2 - 0 (0%)
16wordfence 2 ▲ 1 (50%)
17Copilot 2 ▲ new
18target 2 ▼ -1 (-50%)
19access 2 ▲ new
20Threat 1 ▲ new
21serious 1 ▲ new
22File 1 ▲ new
23intelligence 1 ▼ -1 (-100%)
24Advertising 1 - 0 (0%)
25United States 1 ▼ -1 (-100%)
26Stripe 1 ▲ new
27iframe 1 ▲ new
28account 1 ▲ new
29WhatsApp 1 ▲ new
30Browser 1 ▲ new
31code 1 ▲ new
32QR 1 ▲ new
33Alleged 1 ▲ new
34Shop 1 ▲ new
35payment 1 ▲ new
36sherrodim 1 ▲ new
37patchstackapp 1 ▲ new
38Spain 1 - 0 (0%)
39critical 1 ▲ new
40hacking 1 ▲ new
41realworld 1 ▲ new
42auth 1 ▲ new
43bypass 1 ▲ new
44disclosure 1 ▲ new
45Investigation 1 ▲ new
46Microsoft 1 ▼ -1 (-100%)
47Use 1 ▲ new
48such 1 ▲ new
49secure 1 ▲ new
50blog 1 ▲ new
51case 1 ▲ new
52securityaffairs 1 ▲ new
53incident 1 ▲ new
54Phishing 1 - 0 (0%)
55LearnPress 1 ▲ new
56LMS 1 ▲ new
57SQL 1 ▲ new
58Creation 1 ▲ new
59ALERT 1 ▲ new
60highseverity 1 ▲ new
61Immediate 1 ▲ new
62exploitation 1 ▲ new
63WooCommerce 1 ▲ new
Special keyword group
Top 5
Malware Type
Malware Type

This is the type of malware that is becoming an issue.

No data.

Attacker & Actors
Attacker & Actors

The status of the attacker or attack group being issued.

Keyword Average Label
Attack technique
Technique

This is an attack technique that is becoming an issue.

Keyword Average Label
Exploit
6 (60%)
RCE
2 (20%)
hacking
1 (10%)
Phishing
1 (10%)
Country & Company
Country & Company

This is a country or company that is an issue.

Keyword Average Label
United States
1 (33.3%)
Spain
1 (33.3%)
Microsoft
1 (33.3%)
Threat info
Last 5

SNS

(Total : 12)
  Total keyword

plugin WordPress Exploit Vulnerability Update Browser Attacker WhatsApp payment Spain RCE Microsoft hacking Phishing attack target

No Title Date
1Microsoft Threat Intelligence @MsftSecIntel
@sherrod_im However, the QR code is used by WhatsApp to connect an account to a linked device and/or the WhatsApp Web portal. If the target follows the instructions on the page, the threat actor could gain access to messages in their WhatsApp account & exfiltrate data using browser plugins.		2025.04.16
2Cyber_OSINT @Cyber_O51NT
Threat actors are exploiting a serious vulnerability in the OttoKit WordPress plugin, allowing them to create admin accounts and take over sites; immediate updates to version 1.0.79 are urged to mitigate the risk. #WordPress #Security https://t.co/TucrhGd4lz		2025.04.13
3Dark Web Informer - Cyber Threat Intelligence @DarkWebInformer
???????????? Alleged Compromised Shop Access – Spain A threat actor is allegedly auctioning access to a Spanish eCommerce site with active Stripe payment iframe. ???? WP Admin access (plugin enabled) ???? Stripe iframe integrated ???? 150+ carded orders in 13 days (April) ???? PPS: 24 ???? https:		2025.04.13
4Pierluigi Paganini - Security Affairs @securityaffairs
@patchstackapp @wordfence Attackers are exploiting recently disclosed #OttoKit #WordPress plugin flaw https://t.co/1JnCAiq4zP #securityaffairs #hacking		2025.04.12
5The Hacker News @TheHackersNews
ALERT — A critical OttoKit plugin flaw (CVE-2025-3102) is under active attack: 100K+ WordPress sites at risk. Hackers can create admin accounts and fully take over vulnerable sites. Check admin users → Remove any suspicious accounts. ???? Full details: https://t.co/IG8hKf1que https://t.co/XN2SzDe		2025.04.11

News

(Total : 4)
  Total keyword

WordPress plugin Exploit Vulnerability Update Malware Report Attacker CVSS target RCE intelligence Advertising United States attack

No Title Date
16,000 WordPress Sites Affected by Arbitrary File Move Vulnerability in Drag and Drop Multiple File Upload for WooCommerce WordPress Plugin - Malware.News2025.04.17
2Immediate exploitation of high-severity WordPress plugin flaw reported - Malware.News2025.04.11
3OttoKit WordPress Plugin Admin Creation Vulnerability Under Active Exploitation - The Hacker News2025.04.11
4[webapps] LearnPress WordPress LMS Plugin 4.2.7 - SQL Injection - Exploit-DB.com2025.04.11

Additional information

No data
No data
No data
No URL CC ASN Co Reporter Date
1http://94.140.114.21/vc32.tar
Gozi plugin ursnif ursnif related 		LV LVSia Nano ITJAMESWT_MHT2023.09.28
2http://94.140.114.21/vc64.tar
Gozi plugin ursnif ursnif related 		LV LVSia Nano ITJAMESWT_MHT2023.09.28
3http://94.140.112.19/sk32.jpg
Gozi ISFB plugin ursnif 		LV LVJAMESWT_MHT2023.09.27
4http://94.140.112.19/sk64.jpg
Gozi ISFB plugin ursnif 		LV LVJAMESWT_MHT2023.09.27
5http://94.247.42.213/stilak64.rar
Gozi ISFB plugin ursnif 		DE DEmeerfarbig GmbH & Co. KGabuse_ch2023.07.28
View only the last 5
Beta Service, If you select keyword, you can check detailed information.