DHS and the FBI identified BANKSHOT Trojan malware variants as tools used by the North Korean government. The advisory frames this activity under the U.S. Government name HIDDEN COBRA and points defenders to the related malware analysis report for technical detail. The available excerpt provides high-level attribution and malware naming rather than infection-chain or infrastructure specifics, but it establishes BANKSHOT as a North Korea-linked threat requiring defensive review.