Elastic Security Labs' 2024 Global Threat Report uses telemetry from more than a billion data points to describe broad abuse of off-the-shelf security tools, cloud misconfiguration, credential access, and AI-adjacent social-engineering and malware-development risks. The excerpt says Cobalt Strike and Metasploit accounted for about 54% of observed malware alerts. It also highlights common cloud posture failures, including Azure storage-account checks, AWS S3 checks, Google BigQuery customer-managed encryption, and S3 multifactor-authentication misconfigurations. The source is general threat-landscape context and does not attribute the observed activity to North Korean actors in the available report text.