A US-based company has been hacked after hiring a North Korean cyber criminal as a remote IT worker, highlighting the growing threat of secret North Korean employees turning on their employers with cyber attacks. The firm hired the technician, who faked his employment history and personal details, without realizing he was a North Korean national. Once given access to the company’s computer network, the hacker downloaded sensitive data and sent a ransom demand. Authorities are warning employers to be vigilant about new hires if they are fully remote, citing recent cases of western remote workers being unmasked as North Koreans, who have been accused of working for the regime and earning money to evade sanctions.
Source: https://www.bbc.com/news/articles/ce8vedz4yk7o