The U.S. Department of Justice and FBI on Monday announced an arrest and indictments related to North Korea’s 'IT worker' program, through which North Koreans secured remote tech jobs at more than a 100 U.S. companies to steal money and data globally.
The actions include two indictments, one arrest, searches of 29 suspected 'laptop farms' in 16 states, and the seizure of 29 financial accounts and 21 fraudulent websites used for laundering illicit funds.
According to court documents, the schemes involve North Korean individuals fraudulently obtaining employment with U.S. companies as remote IT workers, using stolen and fake identities. The North Korean actors were assisted by individuals in the United States, China, United Arab Emirates, and Taiwan, and successfully obtained employment with more than 100 U.S. companies.
From 2021 until October 2024, the defendants and other co-conspirators compromised the identities of more than 80 U.S. persons to obtain remote jobs at more than a 100 U.S. companies, including many Fortune 500 companies, and caused U.S. victim companies to incur legal fees, computer network remediation costs, and other damages and losses of at least $3 million.
The North Koreans also allegedly stole at least $900,000 worth of cryptocurrency from one Georgia-based company with their access, along with employer data and source code, including International Traffic in Arms Regulations (ITAR) data, from a California-based defense contractor, the DOJ said.
Zhenxing 'Danny' Wang and Kejia Wang, both U.S. citizens, were indicted as part of the operation, according to the DOJ. Zhenxing Wang was arrested in New Jersey, while Kejia Wang remains free, a DOJ spokesperson said in an email. An attorney for Zhenxing Wang could not be immediately located.
The two men, along with four other unnamed U.S. 'facilitators,' assisted the North Koreans by procuring and operating laptops used by the overseas workers, created financial accounts to receive money earned by the workers to be sent back to North Korea, and created shell companies to make the workers appear more authentic, according to the DOJ, earning nearly $700,000 from the scheme for themselves.
Simultaneously with today’s announcement, the FBI and Defense Criminal Investigative Service (DCIS) seized 17 web domains used in furtherance of the charged scheme and further seized 29 financial accounts, holding tens of thousands of dollars in funds, used to launder revenue for the North Korean regime through the remote IT work scheme.
Federal prosecutors also indicted six Chinese nationals and two Taiwanese nationals for alleged roles in the operation.
China would take all necessary measures to safeguard the rights and interests of its citizens, the country's foreign ministry spokesperson Mao Ning told reporters at a regular news briefing on Tuesday.
Germany’s military planners warn that cyberattacks, sabotage, and disinformation could signal the start of a new war, according to a confidential go...
Protests in Iran over soaring prices and a plunging rial have spread to universities in Tehran, as students join shopkeepers and bazaar merchants in d...
Organisers in New York have successfully completed a test run of the Times Square New Year’s Eve crystal ball, less than 48 hours before the annual ...
Bulgaria is preparing to replace its national currency, the lev, with the euro on 1 January, a long-awaited move welcomed by businesses but viewed wit...
Iran has declared the Royal Canadian Navy a terrorist organisation in response to Canada’s decision to blacklist the Islamic Revolutionary Guard Cor...
Start your day informed with AnewZ Morning Brief: here are the top news stories for the 29th of December, covering the latest developments you need to know.
North Korean leader Kim Jong Un oversaw the launch of long-range strategic cruise missiles on Sunday, in what state media described as a test confirming the country’s nuclear deterrent and readiness to respond to security threats.
Missile development in North Korea is set to continue over the next five years. The country’s leader Kim Jong Un made the remarks during visits to major arms production facilities in the final quarter of 2025, the state news agency KCNA reported on Friday.
North Korean leader Kim Jong Un oversaw the test-firing on Wednesday of a long-range surface-to-air missile at a launch site near its east coast, state media KCNA reported on Thursday.
Roman Abramovich, the Russian billionaire and former Chelsea Football Club owner, has assembled a “top tier” legal team, including a former White House advisor, as he prepares for a legal battle in Jersey.
Protests in Iran over soaring prices and a plunging rial have spread to universities in Tehran, as students join shopkeepers and bazaar merchants in demanding government action. With inflation above 42% and the rial at record lows, unrest continues to grow across the country.
The head of Yemen’s Presidential Council, Rashad al-Alimi, has ordered all forces linked to the United Arab Emirates to leave Yemen within 24 hours.
Max Verstappen has been voted Formula 1’s driver of the year for a fifth straight season by team principals, despite narrowly missing out on the championship.
Syria’s permanent representative to the United Nations, Ibrahim Olabi, said Israel has occupied the Syrian Golan Heights for almost sixty years, and that the UN General Assembly this month once again reaffirmed Syria’s sovereignty over the region.
Germany’s military planners warn that cyberattacks, sabotage, and disinformation could signal the start of a new war, according to a confidential government document seen by Politico. The plan outlines how Germany would defend itself in a major NATO conflict.
Organisers in New York have successfully completed a test run of the Times Square New Year’s Eve crystal ball, less than 48 hours before the annual countdown celebration.
Bulgaria is preparing to replace its national currency, the lev, with the euro on 1 January, a long-awaited move welcomed by businesses but viewed with scepticism and anger by some citizens.
European leaders held talks on Ukraine after Russia said it would revise its negotiating position, citing an alleged Ukrainian drone attack that Kyiv has firmly denied.
Thieves exploited the Christmas holiday closure to drill into a German bank vault, stealing at least €10 million in cash and valuables from customers’ deposit boxes, police said.
You can download the AnewZ application from Play Store and the App Store.
What is your opinion on this topic?
Leave the first comment