In a significant move highlighting global cybersecurity concerns, the US tech giant Amazon has confirmed it prevented more than 1,800 individuals from North Korea from applying for jobs with the company. This action stems from mounting fears that Pyongyang is systematically sending IT professionals abroad to generate and launder foreign currency.
Remote Jobs and "Laptop Farms"
Stephen Schmidt, Amazon's Chief Security Officer, detailed the issue in a LinkedIn post. He stated that North Korean nationals have been actively trying to secure remote IT positions at companies worldwide, with a significant focus on the United States. Amazon observed a nearly one-third increase in these suspicious applications over the past year alone.
Schmidt explained that many applicants operate through setups known as "laptop farms." These involve computers physically located within the US but controlled remotely from overseas, masking the true origin of the worker. He emphasized that this sophisticated threat is not limited to Amazon and is likely happening on a large scale across the entire technology industry.
Common warning signs that flagged these applications included phone numbers with incorrect formatting and academic credentials that appeared dubious or falsified.
US Crackdown and Multi-Million Dollar Schemes
This issue has already triggered serious legal consequences in the United States. In July, a woman based in Arizona received a prison sentence of more than eight years for operating a laptop farm that enabled North Korean IT workers to land remote jobs at over 300 American companies. US officials revealed that this scheme generated revenue exceeding $17 million, which benefited both the woman and the North Korean state.
Furthermore, last year, South Korea's intelligence agency warned that North Korean operatives were using platforms like LinkedIn to pose as recruiters. Their targets were South Koreans employed at defence contractors, in attempts to steal sensitive technological and military information.
Economic Motivation and a Long-Standing Cyber Threat
Analysts point to clear economic drivers behind these operations. "North Korea is actively training cyber personnel and infiltrating key locations worldwide," said Hong Min, an analyst at the Korea Institute for National Unification, in comments to AFP. He added that, given Amazon's vast business, the primary motivation is financial, with a high risk of attempts to steal financial assets.
North Korea's cyber warfare capabilities are well-established, dating back to at least the mid-1990s. A 2020 US military report indicated the program has grown into a dedicated cyber unit, Bureau 121, with roughly 6,000 personnel.
The US government continues to take action. In November, Washington imposed sanctions on eight individuals accused of being state-sponsored hackers, alleging their illegal activities help fund North Korea's nuclear weapons programme. The US Treasury has also accused cybercriminals linked to North Korea of stealing more than $3 billion in the past three years, primarily through crimes involving cryptocurrency.
