Cyber Threat Trends

Summary: 2025/04/17 10:26

First reported date: 2010/08/25
Inquiry period : 2025/04/16 10:26 ~ 2025/04/17 10:26 (1 days), 28 search results

지난 7일 기간대비 11% 높은 트렌드를 보이고 있습니다.
지난 7일 기간대비 상승한 Top5 연관 키워드는 attack Malware target Operation intelligence 입니다.
악성코드 유형 Xloader Grandoreiro Remcos TONESHELL PlugX 도 새롭게 확인됩니다.
공격자 Tick TraderTraitor 도 새롭게 확인됩니다.
공격기술 Dropper 도 새롭게 확인됩니다.
기관 및 기업 Zscaler 도 새롭게 확인됩니다.
기타 BPFDoor Shadows multiple arrest Telemetry 등 신규 키워드도 확인됩니다.

* 최근 뉴스기사 Top3:
    ㆍ 2025/04/17 Hi, robot: Half of all internet traffic now automated
    ㆍ 2025/04/17 Exploiting SMS: Threat Actors Use Social Engineering to Target Companies
    ㆍ 2025/04/17 Latest Mustang Panda Arsenal: PAKLOG, CorKLOG, and SplatCloak | P2

Date range button:

First seen:

Last seen:

Keyword

Trend graph by period

Related keyword cloud

Top 100

#	Trend	Count	Comparison
1	attack	28	▲ 3 (11%)
2	Malware	16	▲ 4 (25%)
3	target	12	▲ 6 (50%)
4	Exploit	7	- 0 (0%)
5	Operation	7	▲ 3 (43%)
6	intelligence	6	▲ 4 (67%)
7	Update	6	- 0 (0%)
8	Report	6	▼ -1 (-17%)
9	RCE	5	▲ 2 (40%)
10	Campaign	5	▲ 2 (40%)
11	Advertising	5	▲ 2 (40%)
12	Phishing	5	▲ 2 (40%)
13	MWNEWS	5	▲ 2 (40%)
14	Software	4	▲ 1 (25%)
15	Microsoft	4	▲ 1 (25%)
16	threat	3	▲ 1 (33%)
17	Education	3	▲ 2 (67%)
18	Linux	3	▲ 3 (100%)
19	Browser	3	▲ 3 (100%)
20	ZeroDay	3	▲ 1 (33%)
21	Backdoor	3	▲ 2 (67%)
22	Victim	3	▲ 1 (33%)
23	Trojan	3	▲ 2 (67%)
24	chain	3	▲ 3 (100%)
25	Vulnerability	3	- 0 (0%)
26	Email	3	▲ 1 (33%)
27	Windows	3	▲ 1 (33%)
28	hijack	2	▲ 1 (50%)
29	Cryptocurrency	2	▲ 2 (100%)
30	BPFDoor	2	▲ new
31	Criminal	2	- 0 (0%)
32	Shadows	2	▲ new
33	controller	2	▲ 2 (100%)
34	Kaspersky	2	- 0 (0%)
35	Stealer	2	▲ 2 (100%)
36	GitHub	2	▲ 1 (50%)
37	Government	2	- 0 (0%)
38	Europe	2	▲ 1 (50%)
39	multiple	2	▲ new
40	IoC	2	▲ 1 (50%)
41	Android	2	▲ 1 (50%)
42	Supply chain	2	▲ 1 (50%)
43	Ransomware	2	▼ -4 (-200%)
44	detection	2	▲ 2 (100%)
45	arrest	1	▲ new
46	Telemetry	1	▲ new
47	environment	1	▲ new
48	Password	1	- 0 (0%)
49	DDoS	1	▲ 1 (100%)
50	FBI	1	▲ 1 (100%)
51	ThreatMon	1	▲ new
52	traffic	1	▲ new
53	proPalestinian	1	▲ new
54	Infamous	1	▲ new
55	payment	1	▲ 1 (100%)
56	cybercrime	1	▲ 1 (100%)
57	marketplace	1	▲ new
58	North Korea	1	▲ 1 (100%)
59	online	1	▲ new
60	Significant	1	▲ new
61	Notorious	1	▲ new
62	application	1	▲ new
63	Approach	1	▲ new
64	RAT	1	▲ 1 (100%)
65	Xloader	1	▲ new
66	Grandoreiro	1	▲ new
67	NetWireRC	1	▲ 1 (100%)
68	Remcos	1	▲ new
69	Banking	1	▲ 1 (100%)
70	web	1	▲ 1 (100%)
71	Snapshot	1	▲ new
72	human	1	▲ new
73	Consumer	1	▲ new
74	cyberattack	1	▲ 1 (100%)
75	bot	1	▲ new
76	Router	1	▲ 1 (100%)
77	hacking	1	- 0 (0%)
78	SplatCloak	1	▲ new
79	Dropper	1	▲ new
80	TONESHELL	1	▲ new
81	Smishing	1	▲ 1 (100%)
82	c&c	1	- 0 (0%)
83	MFA	1	▲ 1 (100%)
84	schtasks	1	▲ new
85	EDR	1	▲ 1 (100%)
86	PlugX	1	▲ new
87	GameoverP2P	1	- 0 (0%)
88	MUSTANG PANDA	1	▲ new
89	United States	1	▼ -2 (-200%)
90	Social Engineering	1	▲ 1 (100%)
91	Tick	1	▲ new
92	Mustan	1	▲ new
93	driver	1	▲ 1 (100%)
94	keylogger	1	▲ 1 (100%)
95	Zscaler	1	▲ new
96	WhatsApp	1	▲ 1 (100%)
97	TraderTraitor	1	▲ new
98	Endue	1	▲ new
99	RN	1	▲ new
100	Chrome	1	▲ new

Special keyword group

Top 5

Malware Type

This is the type of malware that is becoming an issue.

Keyword	Average	Label
Trojan		3 (21.4%)
Ransomware		2 (14.3%)
RAT		1 (7.1%)
Xloader		1 (7.1%)
Grandoreiro		1 (7.1%)

Attacker & Actors

The status of the attacker or attack group being issued.

Keyword	Average	Label
Tick		1 (50%)
TraderTraitor		1 (50%)

Technique

This is an attack technique that is becoming an issue.

Keyword	Average	Label
Exploit		7 (21.2%)
RCE		5 (15.2%)
Campaign		5 (15.2%)
Phishing		5 (15.2%)
Backdoor		3 (9.1%)

Country & Company

This is a country or company that is an issue.

Keyword	Average	Label
Microsoft		4 (23.5%)
Kaspersky		2 (11.8%)
Government		2 (11.8%)
Europe		2 (11.8%)
FBI		1 (5.9%)

Threat info

Last 5

SNS

(Total : 8)

Total keyword

attack Apple targeted iPhone ZeroDay Exploit target Education conference Rapid7 Linux Malware Backdoor Supply chain

No	Title	Date
1	ANY.RUN @anyrun_app ???? Effective threat detection depends on Indicators of Compromise, Attack & Behavior. But do you know the difference between them? Find out and see how you can use them to enrich alerts, gain threat context, and perform malware hunting ???? https://t.co/9QddtlZwEz	2025.04.16
2	The Hacker News @TheHackersNews ???? Supply chain cyberattacks are exploding — and hitting where it hurts most: healthcare, retail, energy. ???? One breach = millions exposed. The risk? Vendors are the backdoor. Hackers are walking right in. Learn what’s driving this wave and how to stay ahead: https://t.co/4LGcPEY37W	2025.04.16
3	The Hacker News @TheHackersNews ???? BPFDoor is back—with a stealthy new controller in play. A fresh wave of BPFDoor attacks has hit telecom, finance & retail sectors in ???????????????????????????????????????? — using a stealth controller that opens reverse shells & moves laterally inside Linux networks. ???? Read → htt	2025.04.16
4	BleepingComputer @BleepinComputer ????️ Your dashboards say you're secure—but threats still get through. Picus Security’s Adversarial Exposure Validation uncovers what your stack is missing with continuous attack simulations and pentesting. ???? Learn more from @PicusSecurity: #sponsored https://t.co/rNss6hGwKb	2025.04.16
5	Dark Web Informer - Cyber Threat Intelligence @DarkWebInformer ????Open Systems Interconnection (OSI) Model Layers and Corresponding Cyberattacks Larger version if needed: https://t.co/UvUmgtU8Ci https://t.co/cpBNguyl4P	2025.04.16

News

(Total : 20)

Total keyword

attack Malware target Operation Report Update Attacker Exploit intelligence RCE Phishing Advertising Campaign Microsoft Software Windows Trojan Browser Vulnerability Email Victim GitHub IoC Kaspersky Government Education Europe Android Cryptocurrency Ransomware hijack ZeroDay Criminal Linux Backdoor Stealer Zscaler MUSTANG PANDA Cobalt Strike RAT schtasks Attacks TraderTraitor hacking North Korea c&c EDR Password Chrome Firefox Router payment Remcos NetWireRC PlugX TONESHELL GameoverP2P keylogger Dropper Xloader Tick Social Engineering United States MFA Smishing WhatsApp Google Grandoreiro FBI QakBot ...

No	Title	Date
1	Cascading Shadows: An Attack Chain Approach to Avoid Detection and Complicate Analysis - Unit 42	2025.04.17
2	Hi, robot: Half of all internet traffic now automated - Malware.News	2025.04.17
3	Exploiting SMS: Threat Actors Use Social Engineering to Target Companies - Malware.News	2025.04.17
4	Latest Mustang Panda Arsenal: PAKLOG, CorKLOG, and SplatCloak \| P2 - Malware.News	2025.04.17
5	Understanding Telemetry in Cybersecurity - Malware.News	2025.04.16

Additional information

No	Title	Date
1	Hi, robot: Half of all internet traffic now automated - Malware.News	2025.04.17
2	Zoom Sees Outage With 50,000 Users Reporting Availability Issues - Bloomberg Technology	2025.04.17
3	Nude photos and names: KU Health and Kansas hospital sued for data breach - Malware.News	2025.04.17
4	DeepSeek Poses ‘Profound’ Security Threat, US House Panel Claims - Bloomberg Technology	2025.04.17
5	6,000 WordPress Sites Affected by Arbitrary File Move Vulnerability in Drag and Drop Multiple File Upload for WooCommerce WordPress Plugin - Malware.News	2025.04.17
View only the last 5

No	Title	Date
1	Exploiting SMS: Threat Actors Use Social Engineering to Target Companies - Malware.News	2025.04.17
2	Latest Mustang Panda Arsenal: PAKLOG, CorKLOG, and SplatCloak \| P2 - Malware.News	2025.04.17
3	Latest Mustang Panda Arsenal: PAKLOG, CorKLOG, and SplatCloak \| P2 - Malware.News	2025.04.17
4	Latest Mustang Panda Arsenal: PAKLOG, CorKLOG, and SplatCloak \| P2 - Malware.News	2025.04.17
5	BreachForums purportedly disrupted by pro-Palestinian hackers - Malware.News	2025.04.16
View only the last 5

No data

No	URL	CC	ASN Co	Reporter	Date
1	http://95.214.55.202:3306/TomcatBypass/Command/Base64/a2lsbGFsbCAtOSBwYXJhaXNvLng4Njsga2lsbGFsbCAtOS... attack shell TomcatByPass	PL	Meverywhere sp. z o.o.	abus3reports	2024.05.14
2	http://194.59.31.163:2411/TomcatBypass/Command/Base64/d2dldCAtTy0gaHR0cDovLzE5NC41OS4zMS4xNjMvbGkyLn... attack shell TomcatByPass	US		abus3reports	2024.05.14

Beta Service, If you select keyword, you can check detailed information.