ESRC reported a North Korea-linked phishing operation that targeted simultaneous interpreters with tailored emails posing as international-event interpretation requests. The lures varied by language focus, including English, Chinese, Russian, and some Japanese indicators, and pushed recipients to a fake electronic-document security page that requested email passwords. If credentials were entered, the attackers exfiltrated them, then sent follow-up messages claiming the event had been postponed to reduce victim suspicion. ESRC linked accounts.nidnavercorp.cloudns.nz and recurring attacker identifiers to prior North Korea-linked activity, and noted that some delivered Word files used the same macro code and infection methods seen in earlier campaigns.