Amazon Blocks Over 1,800 Job Applications from Suspected North Korean Agents

In a startling revelation, a senior Amazon executive has disclosed that the tech giant has rejected more than 1,800 job applications originating from individuals believed to be North Korean agents. These individuals attempted to secure remote IT positions within the company by using either stolen identities or counterfeit credentials.

North Korean Tactics Exposed

Stephen Schmidt, Amazon’s Chief Security Officer, shared these insights in a recent LinkedIn update. He emphasized that the primary aim of these North Korean operatives is clear: to gain employment, receive payment, and redirect funds to support the regime’s weaponry programs. According to Schmidt, this trend is likely prevalent across the tech industry, particularly in the United States.

Authorities in both the U.S. and South Korea have raised alarms regarding such activities by Pyongyang’s agents, who have been implicated in various online scams.

Rising Applications from North Korea

Schmidt noted a nearly 30% rise in job applications from North Koreans over the past year. He described how these operatives often collaborate with individuals managing “laptop farms,” which are essentially clusters of computers located in the U.S. but operated remotely from outside the country.

To effectively screen applications, Amazon has employed a combination of artificial intelligence and manual verification by staff. Schmidt observed that the methodologies used by these fraudsters have become increasingly sophisticated.

Fraudulent Tactics and Warning Signs

One common strategy involves hijacking inactive LinkedIn accounts with leaked credentials to enhance their credibility. Furthermore, these operatives often impersonate legitimate software engineers. Schmidt urged companies to report any suspicious job applications to the appropriate authorities.

Employers are encouraged to remain vigilant for specific signs of fraudulent applications from North Korean candidates, such as improperly formatted phone numbers or discrepancies in educational backgrounds.

Government Action Against North Korean Fraud

In June, the U.S. government announced the discovery of 29 “laptop farms” operating illegally within the country, manned by North Korean IT workers. These operations facilitated North Korean nationals in obtaining jobs in the U.S. using stolen or fictitious American identities, according to the Department of Justice (DOJ).

The DOJ also took action against U.S. brokers involved in helping to secure jobs for these North Korean agents. In a notable case from July, a woman in Arizona received a sentence of more than eight years in prison for her role in operating a laptop farm, which allowed North Korean IT workers to secure remote positions at over 300 U.S. firms. This scheme reportedly generated upwards of $17 million in illegal profit for her and the North Korean regime.

Conclusion

The increasing number of fraudulent job applications serves as a serious reminder of the evolving tactics employed by North Korean operatives. As the tech industry continues to grow, ensuring robust security measures will be crucial in safeguarding against such threats.