A growing threat to Western companies is North Korean IT workers posing as legitimate employees to gather intelligence and fund the country’s missile program. A report by Strider Technologies has identified 35 Chinese-based companies linked to these operations, including those affiliated with U.S.-sanctioned Liaoning China Trade Industry Co.
These companies, such as Dandong Deyun Trading Co., Guangzhou Aiyixi Trading Co., and Yongping Zhuoren Mining Co., have been using job applications to trick companies into hiring them. The goal is not only higher salaries but also gathering sensitive information like intellectual property and company secrets.
The problem has gained attention from cybersecurity vendors, with some accidentally hiring North Korean IT workers themselves. Strider CEO Greg Levesque warns that the scope of this enterprise is far greater than initially thought, citing a lack of mitigation tools to detect fake or misleading job applications.
To combat this issue, Strider will release a tool later this week that automatically detects falsified resumes. HR professionals must be equipped to spot suspicious job applications, and companies must take proactive measures to protect themselves from these scams.
Source: https://www.axios.com/2025/05/13/china-north-korea-it-worker-fraud