• Home
  • Politics
  • Health
  • World
  • Business
  • Finance
  • Tech
  • More
    • Sports
    • Entertainment
    • Lifestyle
What's Hot

Mark Cuban has strong words on AI companies and job losses

July 13, 2026

‘Daredevil’ and ‘Iron Fist’ Actor Dies at 83

July 13, 2026

Spectrum makes significant decision as customer losses mount

July 13, 2026
Facebook Twitter Instagram
  • Contact
  • Privacy Policy
  • Terms & Conditions
Monday, July 13
Patriot Now NewsPatriot Now News
  • Home
  • Politics

    Texas Hispanics swung hard to Trump. A new poll shows they’re furious at his deportations.

    July 12, 2026

    The high-stakes, battleground Senate race that no one is talking about

    July 12, 2026

    Lindsey Graham’s Passing Is Another Stage In The Death Of Trumpism

    July 12, 2026

    How ICE melted from view at the World Cup

    July 12, 2026

    The secret to becoming a sporting superpower

    July 12, 2026
  • Health

    Lindsey Graham Cause Of Death, Aortic Dissection. An ER Doc Explains

    July 13, 2026

    Supporting Science Is An Act Of Patriotism

    July 13, 2026

    AAIC 2026: Researchers focus on tau, target blood-brain barrier

    July 12, 2026

    Lindsey Graham’s Sudden Death Sparks Questions About Cardiac Arrest

    July 12, 2026

    July 13 Is Deadline To Comment On New Trump OMB Rule That Shifts Power

    July 12, 2026
  • World

    Texas Man Gets 40 Years for Leading Violent Online Child Exploitation Ring

    July 13, 2026

    Colombia’s Incoming Conservative Admin to Close Its Embassy in Cuba

    July 13, 2026

    Iran Reports New Attacks On Military Targets On Its Largest Island Near The Strait Of Hormuz

    July 13, 2026

    Factory Fire in ‘Shoe Capital’ City Kills at Least 28

    July 13, 2026

    Lindsey Graham Draws Tributes For His Support Of Ukraine, Trans-Atlantic Ties And Israel

    July 12, 2026
  • Business

    ATF Rule Could Cause Classic Showdown Between Mom And Pop Shops Versus Online Retailers

    July 10, 2026

    Costco Shows That You Can Build A Thriving Business With One Simple Trick (Pay Your Workers)

    July 9, 2026

    The Agency Elizabeth Warren Built Now Advances Trump’s Agenda

    July 9, 2026

    Meta To Shell Out Billions For New AI Data Center Outside US

    July 9, 2026

    How Big Banks Are Scheming To Jack Up Your Fees

    July 8, 2026
  • Finance

    Mark Cuban has strong words on AI companies and job losses

    July 13, 2026

    Spectrum makes significant decision as customer losses mount

    July 13, 2026

    Costco and Walmart capture grocery-store crowns

    July 13, 2026

    Leading energy company files for bankruptcy

    July 13, 2026

    An Adaptive Biotechnologies Insider Sold $8.5 Million in Stock After an 85% Run

    July 12, 2026
  • Tech

    LAPD Cuts Ties with License-Plate Camera Vendor over ‘Who Owns the Data’

    July 12, 2026

    Apple Lawsuit Accuses OpenAI of Stealing Trade Secrets in Massive Scheme

    July 11, 2026

    Bloomberg Claims Startup Co-Founded by Bill Gates’ Daughter Cheats on Sales Credit

    July 11, 2026

    Nobel Prize-Winning Chemist Leaves U.S. to Join Chinese AI Project

    July 11, 2026

    European Commission Finds Meta Violated Digital Services Act with Addictive Design Features

    July 11, 2026
  • More
    • Sports
    • Entertainment
    • Lifestyle
Patriot Now NewsPatriot Now News
Home»Tech»North Koreans Use Fake Names and LinkedIn Profiles to Land Jobs with Western Tech Firms
Tech

North Koreans Use Fake Names and LinkedIn Profiles to Land Jobs with Western Tech Firms

November 23, 2023No Comments6 Mins Read
Facebook Twitter Pinterest LinkedIn Tumblr Email
Share
Facebook Twitter LinkedIn Pinterest Email

Reuters on Tuesday published a disturbing expose of how thousands of North Koreans have been able to land jobs with foreign tech companies using fake names, phony profiles on services like LinkedIn, and interview scripts tailored to make them sound like they are not the subjects of a psychotic Communist tyranny.

On Wednesday, the Justice Department confirmed a major investigation of the scheme has been in progress for some time.

There was an element of dark comedy to the Reuters report, which made it sound fairly easy for dictator Kim Jong-un’s serfs to bamboozle Western human resources departments into thinking they were legitimate job applicants from free countries. 

For example, reporters got their hands on a canned interview script that told North Koreans to say things like “People are free to express ideas and opinions!” to interviewers, telling them exactly what they wanted to hear about healthy “corporate culture.” The scripts included a variety of prepared excuses for why the disguised North Korean applicant needed to work remotely.

Combined with convincing fake resumes and doctored social media profiles, such tactics were good enough to defeat the vetting process at countless information technology companies.

The interview scripts were uncovered by an American cybersecurity firm called Palo Alto Networks, which was investigating a scheme by hackers to trick software companies into installing malware on their systems by posing as job applicants. Palo Alto’s researchers dubbed this tactic “Contagious Interview.”

Contagious Interview attacks typically begin with phony job applicants persuading employers to interview them online, using a video conferencing platform of the hacker’s choice, usually the popular collaboration platform GitHub. Employers who accepted the offer found themselves downloading malware packages disguised as “click here to connect” software.

See also  Former Facebook Diversity Manager Admits to Stealing Millions from Mark Zuckerberg's Company

Some of the Contagious Interview hackers were also reportedly able to persuade prospective employers to download and install software they had written, to evaluate the quality of their coding work. In both scenarios, the unwitting employee allowed the hackers to open back doors into their systems for further mischief.

A review of the infrastructure created to support the Contagious Interview campaign, which is still an active threat, suggested it was designed and sponsored by the government of North Korea.

In the course of conducting this investigation, Palo Alto Networks found another North Korean program dubbed “Wagemole” that was even stranger and more ambitious. Wagemole involved disguised North Koreans actually accepting jobs with American, European, and Asian companies and working remotely, as has become more common since the Wuhan coronavirus pandemic.

The cybersecurity sleuths discovered a “trove of information” used in the Wagemole campaign, including “resumes with different technical skill sets and multiple identities impersonating individuals from various nations,” plus “common job interview questions and answers, scripts for interviews and downloaded job postings from U.S. companies.”

Palo Alto Networks found a cache of data accidentally left unsecured by a North Korean hacker that included “resumes for 14 identities, a forged U.S. green card, interview scripts, and evidence that some workers had bought access to legitimate online profiles in order to appear more genuine.”

This photo provided on Nov. 19, 2022, by the North Korean government shows North Korean leader Kim Jong Un, right, and his daughter inspect the site of a missile launch at Pyongyang International Airport in Pyongyang, North Korea, Friday, Nov. 18, 2022. North Korea’s state media said its leader Kim oversaw the launch of the Hwasong-17 missile, a day after its neighbors said they had detected the launch of an ICBM potentially capable of reaching the continental U.S. Independent journalists were not given access to cover the event depicted in this image distributed by the North Korean government. The content of this image is as provided and cannot be independently verified. Korean language watermark on image as provided by source reads: "KCNA" which is the abbreviation for Korean Central News Agency. (Korean Central News Agency/Korea News Service via AP)

North Korean leader Kim Jong-un and his daughter inspect the site of a missile launch at Pyongyang International Airport in Pyongyang, North Korea, Friday, Nov. 18, 2022. (Korean Central News Agency/Korea News Service via AP)

Researchers could not determine if Wagemole operatives were planting malware in their employers’ systems or stealing intellectual property, but it seemed clear that a hefty portion of their salaries was seized by the regime in Pyongyang for its own use, including funding for its illegal nuclear missile program.

See also  'Free Speech Absolutist' Elon Musk Suspends Accounts of Prominent Tesla Critic Aaron Greenspan

A North Korean IT worker who participated in the Wagemole scheme told Reuters he and his comrades were expected to land jobs paying at least $100,000 a year. The Communist regime skimmed at least 30 percent of their wages off the top, then billed them up to 60 percent more for “expenses,” leaving the workers to keep ten to 30 percent of their income — which is still a lot more than they could earn in North Korea.

“I worked to earn foreign currency. It differs between people but, basically, once you get a remote job you can work for as little as six months, or as long as three to four years. When you can’t find a job, you freelance,” he said.

Reuters said it discovered “further evidence in leaked darkweb data” that North Koreans have fraudulently secured jobs in “Chile, New Zealand, the United States, Uzbekistan, and the United Arab Emirates.” A security firm called Constella Intelligence found one North Korean who had active accounts at more than 20 different websites for IT freelance workers.

The obvious risk for North Korea was that dispatching its captive citizens to work for foreign tech firms could expose them to challenging ideas or forbidden news, but the North Korean who spoke to Reuters said that risk was mitigated with extensive training and monitoring.

The U.S. Department of Justice (DOJ) announced on Wednesday that “thousands” of IT workers contracted with American companies sent “millions of dollars of their wages to North Korea for use in its ballistic missile program.”

See also  Tesla Engineer Injured by Robot at Texas Factory

At a news conference in St. Louis, FBI officials said some of North Korea’s IT workers are actually operating out of China and Russia, “with the goal of deceiving businesses from the U.S. and elsewhere into hiring them as freelance remote employees.” This presumably helps them evade security precautions that might spot emails and online connections emanating from North Korea.

FBI Special Agent in Charge Jay Greenberg said some of the North Koreans took the extra step of “paying Americans to use their home Wi-Fi connections” to fool employers.

According to Greenberg, every U.S. company that hires freelance IT workers has “more than likely” hired at least one disguised North Korean.

“At a minimum, the FBI recommends that employers take additional proactive steps with remote IT workers to make it harder for bad actors to hide their identities,” he said.

DOJ said 17 domain names and $1.5 million in funds have been seized as part of the investigation.

The Associated Press (AP) pointed to evidence the U.S. government has been aware of the North Korean scheme since long before Palo Alto Networks uncovered its data troves, pointing to State and Treasury Department warnings from as far back as May 2022 that North Koreans were trying to “obtain employment while posing as non-North Korean nationals.”

Cybersecurity expert John Hultquist of Mandiant said the scheme was launched at least a decade ago but kicked into a much higher gear after the coronavirus pandemic.

“I think the post-COVID world has created a lot more opportunity for them because freelancing and remote hiring are a far more natural part of the business than they were in the past,” Hultquist told the AP.

fake Firms Jobs Koreans land LinkedIn names North Profiles Tech western
Share. Facebook Twitter Pinterest LinkedIn Tumblr Email

Related Posts

Prince Harry Accused of Using ‘Fake Pill Prank’ on Journalist

July 13, 2026

Tech Investor Vinod Khosla to Buy NFL’s Seattle Seahawks Franchise

July 12, 2026

LAPD Cuts Ties with License-Plate Camera Vendor over ‘Who Owns the Data’

July 12, 2026

Apple Lawsuit Accuses OpenAI of Stealing Trade Secrets in Massive Scheme

July 11, 2026
Add A Comment

Leave A Reply Cancel Reply

Top Posts

Symptoms And How To Stay Safe

July 21, 2023

Digitalization: How the EU Can Transform Central Asia 

August 23, 2023

Tiger Woods’ Massive Net Worth Revealed After Latest Scandal

May 23, 2026

What Mental Health Really Means (And Why It’s More Than “Being Happy”)

January 9, 2026
Don't Miss

Mark Cuban has strong words on AI companies and job losses

Finance July 13, 2026

Oracle’s annual filing cited AI adoption among the drivers of 21,000 job cuts in fiscal…

‘Daredevil’ and ‘Iron Fist’ Actor Dies at 83

July 13, 2026

Spectrum makes significant decision as customer losses mount

July 13, 2026

Texas Man Gets 40 Years for Leading Violent Online Child Exploitation Ring

July 13, 2026
About
About

This is your World, Tech, Health, Entertainment and Sports website. We provide the latest breaking news straight from the News industry.

We're social. Connect with us:

Facebook Twitter Instagram Pinterest
Categories
  • Business (4,399)
  • Entertainment (5,642)
  • Finance (4,165)
  • Health (2,460)
  • Lifestyle (1,897)
  • Politics (3,861)
  • Sports (4,852)
  • Tech (2,371)
  • Uncategorized (4)
  • World (5,619)
Our Picks

Cervical cancer screening doubles when under-screened women are mailed at-home testing kits

May 12, 2023

Samsung Reveals New AI Robot ‘Ballie’ at CES 2024

January 10, 2024

Epidermolysis bullosa could soon get new kind of gene therapy

April 3, 2023
Popular Posts

Mark Cuban has strong words on AI companies and job losses

July 13, 2026

‘Daredevil’ and ‘Iron Fist’ Actor Dies at 83

July 13, 2026

Spectrum makes significant decision as customer losses mount

July 13, 2026
© 2026 Patriotnownews.com - All rights reserved.
  • Contact
  • Privacy Policy
  • Terms & Conditions

Type above and press Enter to search. Press Esc to cancel.