Kevin Prendergast
On January 23, 2025, the U.S. Department of Justice announced the indictment of five individuals, including two North Korean nationals, for operating a sophisticated scheme where North Korean operatives posed as U.S.-based remote IT workers to deceive American companies. The operation lasted for over six years, involved 64 U.S. companies, and funneled more than $866,000 to the Democratic People’s Republic of Korea (DPRK).
These funds were laundered through Chinese bank accounts, ultimately supporting North Korea’s weapons programs. The investigation uncovered the use of U.S.-based “laptop farms,” where company-provided devices were manipulated to create the illusion of local employment while enabling North Korean operatives to access corporate networks from abroad. This case underscores the escalating risks U.S. companies face from external and internal cyber threats.
In this White Paper, we’ll explore how companies can protect themselves against these covert risks. From understanding the tactics used by foreign spies to adopting more thorough and robust pre-employment screening practices, we’ll examine actionable strategies that safeguard your workforce, your clients, and your reputation. Because when it comes to insider threats, vigilance isn’t just important—it’s essential.