North Korean group infiltrated 100-plus companies with imposter IT pros: CrowdStrike report
North Korean group infiltrated 100-plus companies with imposter IT pros: CrowdStrike report
The DPRK group’s attempts to exfiltrate data and install RMM tools by posing as US IT workers is one of several examples that show cross-domain analysis is needed to tackle rising identity-based attacks, according to CrowdStrike’s counter adversary team, as the company reels in the worldwide outage’...
Yeah, if I had just fucked over the world to the tune of $1 billion, I'd probably be deflecting attention to threats other than me too.
Edit: Typo.
Serious question: how does North Korea train "imposter IT pros"? Are these people working for the government who get access to the www? How do they then develop the skills to be selected as such in the first place? What kind of programming experience us taught in NK?
Don’t have an answer to your question – But if you haven’t come across this yet it’s worth a read – https://blog.knowbe4.com/how-a-north-korean-fake-it-worker-tried-to-infiltrate-us
I think there’s a darknet diaries episode about this
They actually have a fairly comprehensive training program setup through their "University." They also mix in foreign contractors, usually from China.
How long before companies start using this as an excuse for return to office?
Sure, you've been working here since before the pandemic, but maybe now you're a North Korean spy! The only way to be sure is for you to come into the office and average 4 days a week.
We believe you CrowdStrike, but what about Microsoft?
So how exactly do they stop the infiltrators from defecting once they're inside the company in another country that is visibly less awful than NK?
Family held hostage
North Koreans, posing as American workers, had been hired for multiple remote IT worker jobs
They never leave the country.
On the flipside how many people are trying to infiltrate NK? I'm not saying that NK (or any state) is good. But it's empire that created and maintains NK. Koreans are the real victims, not these dumb corporations trying to skimp on labor by hiring fake people.