US Sanctions Target North Korean Fake-Tech-Worker Scheme

The United States has taken a significant step in combating one of the most insidious and complex cyber threats facing the country: a scheme that involves recruiting North Koreans to pose as American tech workers and help fund Kim Jong Un's regime. The Treasury Department's Office of Foreign Assets Control (OFAC) has imposed penalties on a "malicious cyber actor" named Song Kum Hyok, who is accused of having ties with a hacking group linked to Pyongyang.

Song allegedly facilitated an IT worker scheme where North Koreans and others working from China and Russia are given false American identities – often using information stolen from US citizens – to gain remote employment with US companies and generate revenues for North Korea. The workers use "a variety of mainstream and industry-specific freelance contracting, payment, and social media and networking platforms" to carry out their nefarious activities, according to the Treasury Department.

The department also noted that in some cases, the IT workers introduced malware into company networks, compromising sensitive information and potentially putting US businesses at risk. This scheme is just one example of the thousands of North Korean workers who have been posing as nationals from other countries to infiltrate companies in the US and around the world.

According to the US government, these fake tech workers are using various methods to gain access to company networks, including creating false identities, stealing information from unsuspecting victims, and even hacking into system vulnerabilities. The consequences of this scheme can be severe, with compromised data potentially leading to financial losses, reputational damage, and even national security threats.

Last month, the Justice Department announced one arrest and charges against nine people connected to the scheme. This is a significant development in the ongoing efforts to disrupt North Korea's illicit activities and bring those responsible to justice. The US government has made it clear that it will not tolerate this type of malicious activity, and will continue to take robust action to counter these threats.

In addition to the sanctions on Song Kum Hyok and his associates, the State Department announced a reward of up to $5 million for information that would disrupt the financial means of people engaged in activities that support North Korea. The department also offered $10 million for identifying and locating people involved in cyber attacks against critical US infrastructure.

This latest development highlights the ongoing efforts by the US government to combat the complex and ever-evolving threat landscape posed by North Korea's illicit activities. As the situation continues to unfold, one thing is clear: the US will not be intimidated by these threats, and will continue to take bold action to protect its citizens, businesses, and national security.