NSHC ThreatRecon's December 2023 roundup said SectorA activity represented the largest share of observed threat actor reporting for the month and targeted government, finance, East Asian, and European environments. The SectorA section described several clusters: SectorA01 used recruiter personas and fake interviews to push malware to software developers, SectorA02 used LNK files disguised as requests for explanations of undeclared funds, and SectorA06 delivered malicious macOS Python scripts through public Discord channels under the guise of cryptocurrency tools. SectorA07 used email account security-check lures with LNK malware that ran obfuscated Visual Basic Script and sent system information to C2. NSHC assessed the continuing SectorA activity as focused on collecting political, diplomatic, and government information related to Korea while also pursuing financial operations worldwide.