A new report from Secureworks indicates that the North Korean group Nickel Tapestry has broadened its operations to not only illegally employ North Korean IT workers but also instruct them to steal data that can be leveraged for extortion. This shift represents a significant evolution in their tactics, wherein the workers are positioned not just as unwitting participants but as active agents in potential data theft strategies.
To combat the growing threat posed by Nickel Tapestry, companies are advised to engage in meticulous screening of job applicants, emphasizing the importance of on-site interviews. This step is crucial to avoid potential scams, as thorough vetting can serve as a first line of defense against the exploitation of vulnerable workforces exploited under the guise of legitimate employment.
Warning signs for businesses include the unexpected use of specific remote access tools like Chrome Remote Desktop and AnyDesk, which, when uncharacteristic of standard company operations, may indicate malicious intent. Additionally, North Korean IT workers often exhibit a reluctance to engage in video calls, frequently citing technical issues with webcams, which can serve as a red flag during the hiring process.
Secureworks has highlighted that while traditionally, North Korean IT workers were less likely to use video for communication, they have begun to test new software for video calls. This change could represent an increase in their operational capabilities, making it even more difficult for organizations to identify potential threats. As tactics evolve, so must the vigilance of hiring practices.
Collection
[
|
...
]