top of page
  • Clipeus

APT38-Linked Targeting Of LinkedIn Users

Microsoft warned of ongoing social engineering attacks targeting LinkedIn users. The actor involved is APT38 (BlueNoroff - which Microsoft tracks as "Sapphire Sleet"), linked to the DPRK-backed Lazarus Group. Targeted LinkedIn users are lured into downloading weaponized documents and / or visiting attacker-controlled skills assessment portals including password-protected ones. The campaign appears to be financially motivated.


Commenting has been turned off.

If you are interested in specifics or additional insights on the threats above or any other threat, please visit our dedicated service page or reach out to with your inquiry. We would be glad to assist you

bottom of page