ESRC reported a North Korea-linked Fake Striker APT campaign targeting South Korean defense and security experts with spear-phishing emails disguised as academic review and event-planning requests from real universities and institutes. The emails directed victims to download malicious Word documents from files.cllouds.great-site[.]net, with lures themed around defense papers and a KIMS-CNA webinar plan. If macros were enabled, the documents communicated with freunkown1.sportsontheweb[.]net to collect and steal information from the host; ESRC also linked related HWP attacks using files.cllouds.great-site[.]net and sooyeon55.atwebpages[.]com. The source attributes the activity to a hacking organization connected to North Korea’s Reconnaissance General Bureau and highlights sustained targeting of diplomacy, security, defense, and unification specialists.