Advisory on North Korean IT Workers
Contents
OFSI Advisory
Advisory on North Korean IT Workers
KEY THREATS
1
It is almost certain that UK firms are currently being targeted
by Democratic People's Republic of Korea (DPRK
a.k.a. North Korea) Information Technology (IT) workers
disguised as freelance third-country IT workers to generate
revenue for the DPRK regime.
2
It is highly likely that DPRK IT workers are presently using
online freelance platforms or job marketplaces to advertise
their services to secure employment with UK firms.
3
It is highly likely that DPRK IT workers are using both witting and unwitting enablers, including
aliases, false or fraudulent personae and proxies, to mask their true identities and hide links to the
DPRK.
4
It is likely that DPRK IT workers make use of Virtual Private Network (VPN), Virtual Private Server
(VPS) or other proxy services, such as remote desktop applications, to obscure their true locations.
5
It is highly likely that DPRK IT workers are leveraging alternative payment methods, such as those
offered by electronic money institutions (EMIs), money service businesses (MSBs) …
Advisory on North Korean IT Workers
KEY THREATS
1
It is almost certain that UK firms are currently being targeted
by Democratic People's Republic of Korea (DPRK
a.k.a. North Korea) Information Technology (IT) workers
disguised as freelance third-country IT workers to generate
revenue for the DPRK regime.
2
It is highly likely that DPRK IT workers are presently using
online freelance platforms or job marketplaces to advertise
their services to secure employment with UK firms.
3
It is highly likely that DPRK IT workers are using both witting and unwitting enablers, including
aliases, false or fraudulent personae and proxies, to mask their true identities and hide links to the
DPRK.
4
It is likely that DPRK IT workers make use of Virtual Private Network (VPN), Virtual Private Server
(VPS) or other proxy services, such as remote desktop applications, to obscure their true locations.
5
It is highly likely that DPRK IT workers are leveraging alternative payment methods, such as those
offered by electronic money institutions (EMIs), money service businesses (MSBs) …