+

Cookies on the Business Insider India website

Business Insider India has updated its Privacy and Cookie policy. We use cookies to ensure that we give you the better experience on our website. If you continue without changing your settings, we\'ll assume that you are happy to receive all cookies on the Business Insider India website. However, you can change your cookie setting at any time by clicking on our Cookie Policy at any time. You can also see our Privacy Policy.

Close
HomeQuizzoneWhatsappShare Flash Reads
 

FBI says North Korea deployed thousands of IT workers to get remote jobs in US with fake IDs

Oct 20, 2023, 22:48 IST
Business Insider
Jay Greenberg, FBI's special agent in charge, shared the news of North Koreans working remote American IT jobs at a press conference Wednesday.Christine Tannous/St. Louis Post-Dispatch via AP
  • North Korea has been sending IT workers to get remote US jobs, according to the FBI and DOJ.
  • The workers have been using these jobs to raise money for North Korea's ballistic missile program, the US agencies said.
Advertisement

Thousands of information technology workers contracting with US companies have for years secretly sent millions of dollars of their wages to North Korea for use in its ballistic missile program, FBI and Department of Justice officials said.

The Justice Department said Wednesday that IT workers dispatched and contracted by North Korea to work remotely with companies in St. Louis and elsewhere in the US have been using false identities to get the jobs. The money they earned was funneled to the North Korean weapons program, FBI leaders said at a news conference in St. Louis.

Federal authorities announced the seizure of $1.5 million and 17 domain names as part of the investigation, which is ongoing.

Jay Greenberg, special agent in charge of the St. Louis FBI office, said any company that hired freelance IT workers "more than likely" hired someone participating in the scheme. An FBI spokeswoman said Thursday that the North Koreans contracted with companies across the US and in some other countries.

"We can tell you that there are thousands of North Korean IT workers that are part of this," spokeswoman Rebecca Wu said.

Advertisement

FBI officials said the scheme is so prevalent that companies must be extra vigilant in verifying whom they are hiring, including requiring interviewees to at least be seen via video.

"At a minimum, the FBI recommends that employers take additional proactive steps with remote IT workers to make it harder for bad actors to hide their identities," Greenberg said in a news release.

The National Security Division's National Security Cyber Section and the US Attorney's Office for the Eastern District of Missouri are also investigating the case.

US Attorney Sayler A. Fleming for the Eastern District of Missouri issued a similar warning, telling employers to exercise caution about who they are hiring and who they are allowing to access their IT systems.

"You may be helping to fund North Korea's weapons program or allowing hackers to steal your data or extort you down the line," Fleming said in a press release.

Advertisement

Officials didn't name the companies that unknowingly hired North Korean workers, say when the practice began, or elaborate on how investigators became aware of it. But federal authorities have been aware of the scheme for some time.

In May 2022, the State Department, Department of the Treasury, and the FBI issued an advisory warning of attempts by North Koreans "to obtain employment while posing as non-North Korean nationals." The advisory noted that in recent years, the regime of Kim Jong Un "has placed increased focus on education and training" in IT-related subjects.

Court documents allege that the government of North Korea dispatched thousands of skilled IT workers to live primarily in China and Russia with the goal of deceiving businesses from the US and elsewhere into hiring them as freelance remote employees.

The IT workers generated millions of dollars a year in their wages to benefit North Korea's weapons programs. In some instances, the North Korean workers also infiltrated computer networks and stole information from the companies that hired them, the Justice Department said. They also maintained access for future hacking and extortion schemes, the agency said.

Greenberg said the workers used various techniques to make it look like they were working in the US, including paying Americans to use their home Wi-Fi connections.

Advertisement

Tensions on the Korean Peninsula are high as North Korea has test-fired more than 100 missiles since the start of 2022 and the US has expanded its military exercises with its Asian allies, in tit-for-tat responses.

The Justice Department in recent years has sought to expose and disrupt a broad variety of criminal schemes aimed at bolstering the North Korean regime, including its nuclear weapons program.

In 2016, for instance, four Chinese nationals and a trading company were charged in the US with using front companies to evade sanctions targeting North Korea's nuclear weapons and ballistics initiatives.

Two years ago, the Justice Department charged three North Korean computer programmers and members of the government's military intelligence agency with a broad range of global hacks that officials say were carried out at the behest of the regime. Law enforcement officials said at the time that the prosecution highlighted the profit-driven motive behind North Korea's criminal hacking, a contrast from other adversarial nations like Russia, China, and Iran that are generally more interested in espionage, intellectual property theft or even disrupting democracy.

In September, North Korean leader Kim Jong Un called for an exponential increase in the production of nuclear weapons and for his country to play a larger role in a coalition of nations confronting the United States in a "new Cold War," state media said.

Advertisement

In February, United Nations experts said that North Korean hackers working for the government stole record-breaking virtual assets last year estimated to be worth between $630 million and more than $1 billion. The panel of experts said in a report that the hackers used increasingly sophisticated techniques to gain access to digital networks involved in cyber finance and to steal information that could be useful in North Korea's nuclear and ballistic missile programs from governments, individuals, and companies.

You are subscribed to notifications!
Looks like you've blocked notifications!
Next Article