Zack Whittaker

New, by me: I wrote ~3,700 of my finest words on North Korea's remote IT workers, who have infiltrated businesses across the U.S. and Europe and aren't slowing down. Probably the most pervasive cyber threats today.

Here's my primer on how to recognize & combat them. https://this.weekinsecurity.com/thousands-of-north-koreans-have-secretly-infiltrated-us-and-european-companies-as-remote-it-workers

Thousands of North Koreans have secretly infiltrated US and European companies as remote IT workers

North Korea's secret remote workers are a major threat facing U.S. and European businesses today, taking jobs in Fortune 100 and smaller companies alike. Here's how to recognize and combat the threat.

~this week in security~
Nov 6 at 1:34pmWeb
Show threadZack WhittakerNov 6

When I recently told an executive about the North Korean remote workers' scheme at a cocktail hour, he almost shit his pants.

Known as a triple threat, North Koreans gain real jobs at Western firms, earn a wage, then steal data and extort them when they get caught. All to make the regime money for nuclear weapons.

This article includes how the scheme works, why it's effective, and what companies large and small can do to identify suspicious applicants.

Please share!

https://this.weekinsecurity.com/thousands-of-north-koreans-have-secretly-infiltrated-us-and-european-companies-as-remote-it-workers/

Thousands of North Koreans have secretly infiltrated US and European companies as remote IT workers

North Korea's secret remote workers are a major threat facing U.S. and European businesses today, taking jobs in Fortune 100 and smaller companies alike. Here's how to recognize and combat the threat.

~this week in security~
Show threadthick but spreadable Nov 11
@zackwhittaker praying for the success of those North Korean remote workers πŸ™πŸ»πŸ‡°πŸ‡΅πŸ«‘
Show threaddanimo πŸ³οΈβ€πŸŒˆNov 6
@zackwhittaker Now that the US has essentially aligned its political system with that of North Korea, an exchange between disenfranchised populations is quite charming πŸ₯Ή
Show threadTim HergertNov 6
@zackwhittaker πŸ˜†
Show threadZack WhittakerNov 6
@cjust glad you enjoyed :)
Show threadMaxim WeinsteinNov 6
@zackwhittaker See also https://news.sophos.com/en-us/2025/11/05/detecting-fraudulent-north-korean-hires-a-ciso-playbook/
Detecting fraudulent North Korean hires: A CISO playbook

Has a North Korean threat actor applied for a position at your organization, or even been hired? We’re sharing a toolkit to help you detect and avoid that risk.

Sophos News
Show threadRick ValenzuelaNov 6
@zackwhittaker good sticker reference(s)
Show threadEndemicEarthlingNov 6

@zackwhittaker Cyber security threat: agents of an irrational rogue state bent on destruction using wildly illegal methods to infiltrate organisations in order to steal their data, siphon their money, and expose all their stakeholders to further extortion.

#DPRK or #DOGE ?