Financial Crime World

Here is the rewritten article in Markdown format:

North Korean IT Workers Target US Businesses, FBI Warns

In a stark warning to the private sector, the Federal Bureau of Investigation (FBI) has sounded the alarm over the increasing threat posed by North Korean Information Technology (IT) workers. These individuals, operating from the Democratic People’s Republic of Korea (DPRK), are evading international sanctions by infiltrating US companies and illicitly generating substantial revenue for the regime.

The Tactics

According to the FBI, North Korean IT workers use various techniques to conceal their identities, including enlisting unwitting or witting U.S.-based accomplices to gain fraudulent employment and access to company networks. This allows them to circumvent controls designed to prevent the hiring of overseas workers and unauthorized access to company systems.

Here are some of the tactics used by North Korean IT workers:

  • Setting up US-based internet connections using company laptops
  • Enabling remote desktop connections through protocols or software download and installation
  • Reshipping company laptops to North Korea
  • Opening financial accounts for the North Korean IT workers
  • Creating job search site profiles
  • Assisting in purchasing web services
  • Attending virtual interviews on behalf of North Korean IT workers

Protecting Yourself

To avoid falling victim to these schemes, businesses and individuals are advised to implement identity verification processes during hiring and throughout employment. Here are some tips to help you stay safe:

  • Educate HR staff and hiring managers about the threat
  • Monitor applicants for unusual network traffic and inconsistencies in interviews
  • Verify remote workers’ identification information through E-Verify.gov
  • Ensure third-party staffing firms conduct robust hiring practices

Reporting Suspicions

If you suspect your business has been targeted by North Korean IT workers or have fallen victim to one of these schemes, the FBI recommends reporting the incident immediately to the Internet Crime Complaint Center (IC3) and evaluating network activity from the suspected employee.

Stay Vigilant

As the FBI warns, it is essential for businesses and individuals to remain cautious when encountering seemingly random job offers or suspicious outreach on job-seeking sites and social media platforms. If you receive a W-4 or 1099-NEC form for a job you did not hold, contact the business and the FBI immediately. Consider placing a Self-Lock through E-Verify.gov to protect your identity from employment-related fraud.

International Efforts

The warning comes as part of a broader international effort to combat the threat posed by North Korean IT workers. In 2022 and 2023, the US government, along with foreign partners, issued public advisories detailing the tactics used by these individuals and providing red flag indicators for businesses to avoid hiring them. The Republic of Korea and Japan have also alerted the public regarding North Korean IT workers.