Dossier
Sapphire Sleet
Coverage of Sapphire Sleet in the Nexus archive.
- Microsoft links Mastra AI supply chain attack to North Korean hackers
Microsoft has attributed a recent Mastra AI supply chain attack, which compromised over 140 npm packages, to the North Korean hacking group Sapphire Sleet, also known as BlueNoroff.
- North Korea Uses ClickFix to Target macOS Users' Data
North Korea's hacking group Sapphire Sleet is using fake job offers and fraudulent Zoom update schemes to deploy the ClickFix malware, targeting macOS users to steal credentials and sensitive data. The attacks exploit social engineering tactics to compromise Mac systems.