CrowdStrike: North Korean spies posing as remote workers in 100s of companies
9 months ago
- #North Korea
- #cybersecurity
- #fraud
- North Koreans posing as remote IT workers have infiltrated companies to generate money for the regime.
- CrowdStrike identified over 320 incidents in the past 12 months, a 220% increase from the previous year.
- Workers use false identities, resumes, and AI tools like deepfake to gain employment and steal data.
- The scheme aims to fund North Korea’s nuclear weapons program, generating billions of dollars.
- Some estimates suggest thousands of North Korean IT workers are employed by unknowing U.S. companies.
- CrowdStrike suggests better identity verification to prevent hiring sanctioned workers.
- U.S. Department of Justice targets facilitators and 'laptop farms' used by North Korean workers.
- One operation stole identities of 80 U.S. individuals to gain remote work at over 100 companies.