The U.S. Department of Homeland Security Cybersecurity and Infrastructure Security Agency (CISA) has published three Malware Analysis Reports (MARs) on recent malicious cyber activity being performed by the North Korean government. The first two pertain to a proxy malware and tunneling tool referred to as “ELECTRICFISH;” the third is for a trojan referred to as “BADCALL.” These and other reports regarding malicious cyber activity performed by the North Korean government have been posted to CISA’s “HIDDEN COBRA” webpage (the U.S. government refers to malicious cyber activity by the North Korean government as HIDDEN COBRA).