Fraudulent technology employees from North Korea are now extorting their targets

A recent study from Secureworks reveals that the North Korean syndicate Nickel Tapestry has broadened its activities from unlawfully placing North Korean technology employees in foreign enterprises to empowering the employees to pilfer data for the purpose of blackmail in case of dismissal, as indicated by The Register.

To steer clear of falling prey to such deceptions, businesses are being advised to rigorously vet their prospective employees — preferably through face-to-face interviews. It is also recommended to closely monitor cybersecurity measures related to remote connectivity.

Red flags to be cautious of encompass the utilization of Chrome Remote Desktop and AnyDesk software, especially if they are not standard tools of the enterprise, and linkups to Astrill VPN IP addresses. North Korean technology employees also have a tendency to refrain from engaging in video calls and habitually assert that their webcam is nonfunctional. Nevertheless, as per Secureworks, they are reportedly testing out novel applications to handle video communications in the future.

About Author

AndyC

Andy Curtis is an award-winning security consultant, researcher and public speaker. He has been working in the computer security industry since the early 1990s, having been employed by state and federal government, leading healthcare and banking providers across three continents. He has given talks about computer security for some of the world’s largest companies, worked with law enforcement agencies on investigations into hacking groups, and is a regular voice on TV and radio explaining IT security threats.

See author's posts