Bitcoin reached a new all-time high of $118,900 on Friday, surpassing its previous record of $113,822 set on Thursday. As Read more
Selling software to companies can be a daunting task, especially when it comes to meeting security requirements. Chas Ballew, founder Read more
Earlier this week, San Diego startup Gallant announced $18 million in funding to bring the first FDA-approved ready-to-use stem cell Read more
The world’s richest man buys out one of the most popular social media platforms and uses it as a propaganda Read more
Researchers at security firm CrowdStrike have observed a significant increase in cases where North Korean individuals posing as remote IT workers infiltrate companies to financially support the regime. According to CrowdStrike’s latest threat-hunting report, there have been over 320 incidents in the past year, a 220% increase from the previous year, where North Koreans secured fake employment at Western companies as developers. This deceptive scheme involves North Koreans using fake identities, resumes, and work histories to not only earn money for the regime but also to steal data from the companies they work for and later extort them. The ultimate goal is to fund North Korea’s sanctioned nuclear weapons program, which has generated billions of dollars for the regime.
The Rise of “Famous Chollima”
CrowdStrike refers to these North Korean IT workers as “Famous Chollima” and notes their reliance on generative AI and other AI-powered tools to create resumes and alter their appearance during remote interviews. Despite sanctions prohibiting U.S. companies from hiring North Korean workers, these individuals are increasingly successful in securing employment. To combat this, CrowdStrike suggests implementing enhanced identity verification processes during the hiring phase. Some companies in the crypto industry have even resorted to unconventional methods, such as asking prospective employees to make negative comments about North Korea’s leader, Kim Jong Un, to identify potential spies.
Legal Action and Disruption Efforts
In response to these illicit operations, the U.S. Department of Justice has taken action against U.S.-based facilitators who assist in running the scheme for their North Korean superiors. This includes targeting individuals involved in “laptop farm” operations, where North Koreans use racks of open laptops to conduct remote work as if they were physically located in the United States. Prosecutors revealed that one North Korean group stole the identities of 80 U.S. individuals between 2021 and 2024 to secure remote positions at over 100 U.S. companies.
