Cisco Talos observed a targeted malware campaign being leveraged in an attempt to compromise specific organizations. The infection vector was a Microsoft Word document that was disguised as a job posting for Cisco Korea, and leveraged legitimate content available as part of job postings on various websites. This sort of attack has become more common as threat actors continue to target users to gain an initial foothold in environments. Organizations are encouraged to employ a defense-in-depth approach to security and disallow the execution of macros where possible.”]
Source: https://blog.talosintelligence.com/2019/01/fake-korean-job-posting.html