Key Facts
• North Korean operatives created fake job platforms targeting U.S. AI and crypto firms.
• Security firm Validin revealed this as a new tactic to steal funds and technology.
• Fake platforms mimic designs of popular recruitment service Lever.
• Listings included fake roles like “Product Manager” for AI models by Anthropic.
• Operatives aim to access job seekers’ devices before hiring.
• CEO Kenneth Kinion stated this bypasses employer defenses and deceives applicants.
• Applicants often unknowingly accept malicious files during hiring processes.
• Validin recently discovered the fake sites but has not identified victims yet.
• North Korean workers have infiltrated U.S. firms using fake identities for years.
• Past cases include a California crypto firm unknowingly paying North Korean IT workers.
Summary
North Korean operatives have launched fake job portals targeting U.S. AI and cryptocurrency firms, according to security firm Validin. These platforms, designed to mimic legitimate recruitment services like Lever, aim to deceive job seekers and gain long-term access to their devices. Fake job listings, such as roles related to AI models by Anthropic, lure applicants into unknowingly accepting malicious files. This tactic bypasses traditional employer defenses and exploits the hiring process. While no victims have been confirmed yet, North Korea has a history of infiltrating U.S. companies using fake identities, with stolen funds often supporting its weapons programs. A notable past case involved a California crypto firm unknowingly paying North Korean IT workers. Validin’s findings highlight the evolving methods of North Korean cyber-espionage.
