Unit 42's actor reference identifies North Korean-attributed groups under the Pisces constellation, with activity spanning cyberespionage and financial crime across many industries. Jumpy Pisces is described as a Lazarus-linked DPRK nation-state actor that primarily targets South Korean entities using spear phishing, watering holes, supply chain attacks, software vulnerability exploitation, and abuse of legitimate software, proxy, and tunneling tools. The excerpt lists impacted sectors for Jumpy Pisces including aerospace and defense, financial services, and utilities and energy. Slow Pisces is described as an RGB-linked North Korean group focused since 2020 on generating revenue for the regime by targeting cryptocurrency organizations, while also compromising aerospace, defense, and industrial organizations for likely espionage tied to DPRK military capabilities.