ESRC reports a North Korea-linked phishing campaign against diplomacy, security, defense, and North Korea-focused experts using fake advisory or reference-material requests. The activity routes victims from email download lures to credential-harvesting pages or malicious Word documents and is associated with the long-running Smoke Screen campaign, which the report links to espionage, cryptocurrency theft, and outsourced development revenue schemes.