The US government has announced charges, seizures, arrests and rewards as part of an effort to disrupt a scheme in which North Korean IT workers infiltrated hundreds of companies and earned millions of dollars for North Korea.
According to the Justice Department, North Korea has dispatched thousands of skilled IT workers around the world.
These workers stole the identities of people living in the United States and leveraged them to get jobs at more than 300 companies.
This allowed them not only to earn significant amounts of money for North Korea, but also to obtain valuable access to information and networks.
The Justice Department on Thursday announced charges against 49-year-old Christina Marie Chapman of Arizona over her alleged role in assisting North Korean IT workers with getting jobs in the United States between October 2020 and October 2023.
Chapman allegedly helped them pose as US persons, and ran a laptop farm at her residence to make it appear that the computers used by the North Koreans were logging in from the United States.
Chapman is also accused of helping transfer the money generated by the scheme outside of the US. Authorities say the scheme helped North Korean IT workers get jobs at Fortune 500 companies, including a major TV network, a car manufacturer, a Silicon Valley tech firm, an aerospace manufacturer, a luxury retail store, and a media and entertainment company.
The IT workers, who earned at least $6.8 million, even attempted to obtain jobs at two US government agencies.
The scheme is said to have involved more than 60 stolen identities, and in dozens of cases the fraudsters' actions created false tax liabilities for the impacted individuals.
The US has seized funds related to the scheme from Chapman, who faces more than 97 years in prison.
In addition to Chapman, who was arrested in the United States, the law enforcement operation also resulted in the arrest of 27-year-old Ukrainian national Oleksandr Didenko in Poland.
Didenko is accused of running a service that created accounts at US-based freelance IT job search platforms, as well as with money service transmitters, which could be used by overseas IT workers to pose as people based in the US and obtain jobs.
Didenko, who is said to have created more than 871 such 'proxy' identities, faces up to 67 years in prison.
Investigators found at least one connection between the services provided by Didenko and Chapman, and uncovered evidence that the Ukrainian had been aware that some of his customers were North Korean.
The US State Department announced on Thursday that it's offering rewards of up to $5 million for information related to the North Korean individuals who worked with Chapman.
North Korea has been known to leverage cyberattacks and remote IT workers to evade sanctions and obtain funds for its weapons programs.
This Cyber News was published on www.securityweek.com. Publication date: Fri, 17 May 2024 10:28:40 +0000