An investigation has found that thousands of North Korean workers are attempting to secure US jobs under stolen or fabricated identities. Workers are reportedly using AI tools to pose as American developers, engineers, and tech consultants, funneling millions in salaries back to… pic.twitter.com/eAt4rVnH8e
— Tony Seruga (@TonySeruga) September 29, 2025
An investigation has found that thousands of North Korean workers are attempting to secure US jobs under stolen or fabricated identities. Workers are reportedly using AI tools to pose as American developers, engineers, and tech consultants, funneling millions in salaries back to their regime. Companies like Nike and Bank of America have been unknowingly affected.
AI is their secret weapon. The operatives rely on ChatGPT, AI face-swapping software, and live face-masking tools to hide (https://edition.cnn.com/interactive/2025/08/05/world/north-korea-it-worker-scheme-vis-intl-hnk/media/workerLoop2A.mp4) their true identities during video calls. Browser histories show operatives asking AI about Thanksgiving traditions, football rules and New Year’s resolutions — all to mimic American culture.
They have help. American facilitators steal identities, run “laptop farms”, and process paychecks for the operatives. Christina Marie Chapman, a TikToker from Arizona, ran up to 90 laptops from her home and helped North Koreans land jobs at over 300 companies, generating more than $17M. She was sentenced to 8.5 years in prison.
The scale is staggering. Facilitators have been recorded in nearly every state, and fake profiles continue to apply for jobs. Many workers juggle multiple positions across companies, and employers often notice issues only after suspicious activity appears on corporate devices.
The risks are growing. US officials warn the scheme is evolving beyond just making money. As operatives gain access to sensitive roles, so does the potential for ransomware or other cyberattacks. “This is code red,” said a US prosecutor.
You can read the full report here: https://edition.cnn.com/interactive/2025/08/05/world/north-korea-it-worker-scheme-vis-intl-hnk/index.html
Replies