security: Dissecting Sapphire Sleet’s macOS intrusion from lure to compromise
Microsoft Security Blog
2026-04-16
Microsoft reports a macOS intrusion campaign attributed to Sapphire Sleet that uses social engineering and user-driven execution to bypass macOS protections. The activity is described as targeting credentials, cryptocurrency assets, and sensitive data.