North Korean Fake IT Workers More Aggressively Extorting Enterprises
securityweek
The individuals involved in North Korean fake IT worker schemes are extorting the organizations that employ them and are increasingly aggressive in their tactics, fresh warnings from the FBI and Mandiant show.
According to the FBI, in addition to extorting US organizations that were deceived into hiring them, the North Korean IT workers have been infiltrating corporate networks to steal sensitive data, facilitate cybercrime, and conduct other activities that generate revenue for the Pyongyang regime.
“After being discovered on company networks, North Korean IT workers have extorted victims by holding stolen proprietary data and code hostage until the companies meet ransom demands. In some instances, North Korean IT workers have publicly released victim companies’ proprietary code,” the FBI says.
The agency warns that these workers have been observed copying organizations’ code repositories, posing a risk of code theft, and could attempt to harvest company credentials and session cookies for further ...
Copyright of this story solely belongs to securityweek . To see the full text click HERE