NSHC’s 2022 SectorA activity review describes seven subgroups conducting information-collection and financially motivated operations, with SectorA05, SectorA06, and SectorA01 appearing most active. The DPRK-relevant targeting centered heavily on South Korea, especially government, research, media, education, diplomacy, defense, security, unification, and North Korea-related individuals or organizations. Reported operations included phishing emails disguised as credit card statements, government electronic documents, broadcaster or scriptwriter communications, interview requests, incident reports, and virtual-currency investment information. The groups used multiple delivery formats, including HWP, Microsoft Word and Excel files, CHM help files, LNK shortcuts, malicious web pages impersonating services such as Naver and Google, and ransomware in some SectorA01 and SectorA04 activity. The review matters for DPRK-focused tracking because it shows sustained SectorA targeting of North Korea-related professionals and South Korean strategic communities across repeated monthly campaigns.