Not sure what that has to do with North Korea, but anyhow, North Korea is infiltrating US organizations with an IT worker scheme. US companies are so excited about hiring workers that aren’t from the US they don’t care if they are actually North Korean hackers – that’s fine – anything is better than hiring US workers!
“By simply updating onf.txt in the repository (pointing to a new Dropbox file), the operators could rotate payloads to infected machines”
Never trust a .txt file?
“The disclosure comes as CrowdStrike revealed that it has identified more than 320 incidents over the past 12 months where North Koreans posing as remote IT workers have infiltrated companies to generate illicit revenue for the regime, a 220% jump from last year.”
An interesting update on the North Korean “job” scheme – https://thehackernews.com/2025/07/us-sanctions-firm-behind-n-korean-it.html
Looks like one of the bigger actors got busted! But yeah, when you hire someone, it’s probably good to make sure through video and official documentation like birth certificates and background checks that they are not North Korean nationals looking to steal and sell your data and access to your networks.
Leave a Reply
You must be logged in to post a comment.