North Korean crypto thief impersonates an expert using fake resumes and identities, Bloomberg The news was reported on August 1st.
According to Bloomberg, an interview with a cybersecurity expert found that these scammers are actively plagiarizing information from legitimate profiles to apply for Indeed and LinkedIn jobs.
North Korean thief targeting cryptocurrency work
Cybersecurity firm Mandiant reports that North Korean job seekers claim to be “innovative and strategic thinking experts,” and “the world will get great results from my hands.” Added.
The applicant claimed to be an experienced software developer, but researchers at the company found surprisingly similar words in someone else’s profile.
Researchers not only plagiarized their resumes, but also found that a North Korean suspect was qualified to apply for a job.
This includes lying about publishing a white paper on the Bibox cryptocurrency exchange and pretending to be a senior software developer. Researchers added that several employers hired these suspicious North Koreans as freelancers.
Why crypto job?
Joe Dobson, Mandiant’s chief analyst, said the new scheme could be a way to gather information before cryptocurrency trends occur. Dobson said:
“It comes down to an internal threat. If someone is hired by a crypto project and they become core developers, it allows them to influence things whether they are good or not.”
In addition, researchers pointed out that some of these activities may be sponsored by the state to give the North Korean government an advantage in washing illegal funds from crypto crimes. ..
North Korean officials have always denied being a sponsor of crypto crimes, but said that public information available is not.
The United States had previously warned about this threat
The new report supports a previous warning from the US government that North Korean IT workers are trying to gain foreign freelance status under the guise of citizens of other countries.
A 16-page advisory released two months ago claimed that IT workers are focusing on “freelance contracts from employers in wealthy countries.”
Google warns about fake job sites
Meanwhile, Google also reported that a North Korean hacker has duplicated popular job sites such as Indeed.com and ZipRecruiter to collect information from visitors and in some cases steal data. ..
In such cases, we collect information from job seekers and send malicious software to access the data.
