- Microsoft says North Koreans use advanced AI-driven tools to hide their identities
- The workers are employed by US companies and then steal their sensitive files
- The US government cracks down on the campaigns
North Korean hackers who are scamming into US-based high-profile tech companies have recently ramped their efforts, security experts have warned.
In a recent analysis, Microsoft called on his comrades to implement stricter control measures before hiring and create policies to block non-approved IT management tools.
Further analysis by the US government found that these people were working on stealing money for the North Korean government, which then uses it to finance its government apparatus and his weapon program
Arrest the suspects
The United States has imposed stiff sanctions against North Korea, which, among other things, prevents US companies from hiring North Korean citizens.
As a result, opponents have created fake personas and used all kinds of tools (including VPNs), to hide their true identity and location, thus increasing their chances of being hired.
Lately, they have increased their efforts and have started using voice-changing software and AI-enhanced documents to increase their credibility.
They have also managed to use someone who lives in New Jersey who opened Shell companies to trick victims into believing they paid a local business. The same person allegedly also helped their overseas comrades to be hired.
But the performance seems to be up when the US Department of Justice (DOJ) arrested and accused an American national named Zhenxing “Danny” Wang of running a “years -long” scheme. The efforts of the net more than $ 5 million. Another eight people were also indicted – two Taiwanese and six Chinese citizens. They are all accused now of having conspired for committing wire fraud, money laundering, identity theft, hacking and sanctions.
In addition to actually being paid for the work done (which, ironically, according to Microsoft, is often excellent), these people also have access to sensitive business data. They sometimes abuse this access by stealing the data and then pressing the company.
One of the largest and most destructive hacking collectives in the world is the North Korean state -sponsored group of Lazarus, which brought billions of dollars to the government through similar schemes. In fact, the whole operation even has a name – “Operation Dreamjob”.
Via Techcrunch
