Inside the DPRK: Spotting Malicious Remote IT Applicants

Description

The Democratic People’s Republic of Korea (DPRK) deploys skilled IT workers remotely to organizations globally funding its weapons of mass destruction (WMD) and missile programs, violating sanctions. In recent weeks, the techniques leveraged to evade detection have evolved, reducing reliance on traditional “laptop farms”. The threat has also expanded beyond the U.S. with active operations within Europe and other regions. Included is a list of emails that are tied and associated with DPRK Insider IT Worker infrastructure that may have been used for potential employment opportunities.