Summary: North Korean-linked hackers are leveraging new tactics in their fake IT worker scheme, targeting remote engineering and blockchain developer positions in Japan and the US. A human risk security firm, Nisos, has identified a network of personas that employ sophisticated strategies to misrepresent their identities. The purpose of this scheme is reportedly to fund Pyongyang’s nuclear programs through illicit employment activities.
Affected: Global IT job market, companies hiring remote tech workers
Keypoints :
- Hackers are posing as IT workers from Vietnam, Japan, and Singapore, targeting remote job opportunities.
- Identified personas create or manipulate GitHub accounts to support their professional appearances.
- The objective of the network is to fund North Korea’s ballistic missile and nuclear weapons programs.
- Profiles often lack social media presence, suggesting they are solely for job acquisition purposes.
- Recommendations for companies include verifying applicant identities in person and conducting detailed online presence reviews to spot inconsistencies.
Source: https://www.infosecurity-magazine.com/news/north-korean-fake-it-workers-github/