""In June 2025, we used a combination of pre-employment OSINT due diligence and targeted interview questions to expose a suspected DPRK operative.""
""These operations follow a consistent set of tactics, including the use of newly created email accounts, stolen identities, fake LinkedIn and resume profiles, and AI-assisted content designed to pass automated screening systems.""
""The risk goes well beyond payroll fraud - once inside, these individuals can operate as insider threats with access to sensitive systems, enabling data exfiltration, intellectual property theft, and long-term persistence.""
A North Korean operative tried to infiltrate a cybersecurity firm with a stolen identity and an AI-generated resume, revealing vulnerabilities in hiring processes. This incident is part of a broader scheme where North Korean IT workers pose as legitimate candidates to secure jobs and send earnings back to the regime. Tactics include identity theft, fake profiles, and AI-generated content to bypass screening systems. Once hired, these operatives can become insider threats, risking data exfiltration and intellectual property theft, particularly in high-privilege roles.
Read at TechRepublic
Unable to calculate read time
Collection
[
|
...
]