FBI claims North Korean workers are hacking the US companies which hired them

The FBI’s missive follows three previous ones in as many years
Statement is aimed at educating businesses and warding off domestic collaborators
Suggested remedies include employing endpoint protection on computer systems and checking applications for “typos and unusual nomenclature”

The FBI has claimed North Korean IT workers are extorting US companies which have hired them by leveraging their access to steal source code.

In a statement, the agency warned domestic and international firms employees turned threat actors, “facilitate cyber-criminal activities and conduct revenue-generating activity” using stolen data “on behalf of the regime.”

It recommended endpoint protection, and monitoring network logs to identify where data has been compromised across “easily accessible means” like shared internal drives and cloud storage drives.

FBI guidance on remote hiring processes

The FBI also recommended a litany of actions that all amount to taking care to know who you’re hiring, which sounds like good practice even if you’re not especially worried about unwittingly hiring a threat actor.

It recommended stringent identity verification processes throughout the recruitment process and cross-checking applicants’ details against that of others in the pile, and across different HR systems.

It also claimed these applicants are using AI tools to obfuscate their identities, but, if true, offered little advice to counter them beyond conducting recruitment processes in person; which isn’t always possible.

The agency also suggested recruiters ask applicants “soft questions” about their whereabouts and identity, but we’d suggest that this is good practice all round too.

North Korean IT workers have been a target of the FBI for some time, having released separate guidance in 2022, 2023, and 2024. In the latter, it expressed concern that US-based individuals were, knowingly or unknowingly, helping facilitate state-sponsored threat actors by setting up US-based infrastructure such as front addresses and businesses.

Buyer beware: Asus’ Q-Release Slim feature is reportedly damaging GPUs like the RTX 5090

Epson EpiqVision Mini EF22 review: a well-rounded portable laser projector with Google TV

How to watch Chelsea vs Arsenal: free WSL live streams

I just saw Dreame’s new robot vacuum with feet, and I’m ready to throw out my Roborock

What UK political parties are promising in the 2019 general election

Otto Warmbier’s parents want North Korea to suffer for their son’s death

Could a ‘youthquake’ cause Boris Johnson to lose the general election?

People are driving through flames to escape this California wildfire

Which Celebrity Styles Americans Copy Most in 2025: New Study

New ‘Westworld’ trailer introduces us to another dystopian tech company

What’s the point of ‘Charlie’s Angels’ without Sam Rockwell dancing?

These striking photos capture the future of human flight

Trump vs. Harris: How the election will affect EV adoption

Lumwana’s Super Pit Expansion Officially Launched By Investing.com

How Biden could use a 1947 law to suspend the dockworkers’ strike

Why your Roth IRA conversions could have ‘unintended’ tax consequences

The YouTuber who has become one of Gen Z’s most beloved celebrities

26 last-minute holiday gifts that are still thoughtful and unique

Practicing gratitude regularly can make you less stressed and sleep better

8 things millennials wish you would just stop getting them for the holidays

FBI claims North Korean workers are hacking the US companies which hired them

Buyer beware: Asus’ Q-Release Slim feature is reportedly damaging GPUs like the RTX 5090

Epson EpiqVision Mini EF22 review: a well-rounded portable laser projector with Google TV

How to watch Chelsea vs Arsenal: free WSL live streams

I just saw Dreame’s new robot vacuum with feet, and I’m ready to throw out my Roborock

Leave a reply Cancel reply