Amazon has blocked more than 1,800 job applications tied to suspected North Korean operatives. Amazon chief security officer Stephen Schmidt revealed the action publicly. He shared the information in a LinkedIn post. The applicants targeted remote IT positions across the company. They relied on stolen or fabricated identities to pass hiring checks.
Remote Employment Used to Channel Funds to Pyongyang
Schmidt said the applicants followed a clear and deliberate plan. They aimed to secure jobs and receive steady salaries. They then redirected wages to North Korea. The funds supported weapons development and state programs. Schmidt warned the activity likely affects much of the technology sector. He said US companies remain the primary targets.
US and South Korean authorities have issued repeated warnings. They have tracked online scams linked to North Korean operatives. Officials said these operations increasingly target Western employers.
Amazon Records Sharp Rise in Fraudulent Applications
Amazon recorded a nearly one-third increase in suspicious job applications over the past year. Schmidt said many operatives depended on partners inside the United States. These partners operated so-called laptop farms. The farms used computers physically based in the US. Operators controlled the devices remotely from abroad.
Amazon combined artificial intelligence tools with staff-led verification. Employees screened applications and reviewed identity signals. The company used these measures to detect coordinated fraud attempts.
Identity Theft Methods Grow More Sophisticated
Schmidt said the fraud techniques continue to advance. Bad actors hijack dormant LinkedIn accounts using leaked credentials. They impersonate real software engineers to appear legitimate. Schmidt urged companies to report suspicious applications to authorities.
He advised employers to watch for specific red flags. These include incorrectly formatted phone numbers and inconsistent education histories. Such details often expose fraudulent identities.
US Authorities Dismantle Widespread Laptop Farm Networks
In June, the US government uncovered 29 illegal laptop farms nationwide. North Korean IT workers operated the farms remotely. They relied on stolen or forged American identities. The Department of Justice said the scheme helped secure jobs at US companies.
Prosecutors also charged US brokers who supported the operation. In July, an Arizona woman received a prison sentence exceeding eight years. She ran an extensive laptop farm network. The operation placed workers at more than 300 US companies. Authorities said the scheme generated more than $17m in illegal gains for her and Pyongyang.
