The excerpt describes North Korea's cyber capability as a state-backed force built from selected technical students and organized around offensive, intelligence, and revenue-generating missions. It cites claims from defectors and researchers that DPRK cyber units include thousands of personnel reporting to the Cabinet General Intelligence Bureau, with some operators working from overseas locations such as China. The text separates DPRK activity into groups focused on foreign targets, South Korean military and infrastructure secrets, lower-skill targeted email activity, and revenue operations. It also references a Chollima-based classification that distinguishes financially motivated activity, attacks on media and government agencies, counterintelligence-focused operations, and theft of confidential user data. APT37 is mentioned as a separate group observed conducting intrusions across South Korea and the Middle East while trying to remain less visible.