NSHC’s June 2021 monthly threat actor report covers multiple regional actor clusters, with the DPRK-relevant portion centered on SectorA activity. SectorA01 used document lures related to a European aircraft manufacturer, while SectorA04 targeted South Korean manufacturing and media organizations with Word malware that retrieved multi-stage payloads from C2 servers. SectorA05 targeted personnel in South Korea’s defense, security, trade, energy, and university sectors using spear-phishing emails for information collection, and SectorA07 used cryptocurrency-wallet-themed Word malware in South Korea. The report assesses SectorA operations as long-running efforts to collect high-value political, diplomatic, and government-related information tied to Korea while also conducting financially motivated activity worldwide.