Amazon has blocked more than 1,800 job applications tied to suspected North Korean operatives. Amazon chief security officer Stephen Schmidt revealed the move publicly. He shared the details in a LinkedIn post. The applicants targeted remote IT roles across the company. They used stolen or fabricated identities to evade hiring checks.
Remote Hiring Used to Finance State Programs
Schmidt said the applicants followed a clear and repeatable plan. They sought employment and collected regular salaries. They then redirected wages to North Korea. The funds supported weapons development and other state programs. Schmidt warned this activity likely spans the wider technology sector. He said the problem appears especially severe in the United States.
US and South Korean authorities have issued ongoing warnings. They have tracked online scams linked to North Korean operatives. Officials said these schemes increasingly target Western companies.
Amazon Detects Steep Rise in Suspicious Applications
Amazon recorded a nearly one-third increase in such applications over the past year. Schmidt said many operatives relied on partners inside the United States. These partners ran so-called laptop farms. The farms used computers physically located in the US. Operators controlled the systems remotely from outside the country.
Amazon deployed artificial intelligence tools alongside human verification. Staff screened applications and reviewed identity indicators. The company used these combined measures to identify coordinated fraud.
Online Impersonation Tactics Grow More Complex
Schmidt said the fraud techniques continue to advance. Bad actors hijack dormant LinkedIn accounts using leaked credentials. They impersonate real software engineers to appear trustworthy. Schmidt urged companies to report suspicious applications to authorities.
He advised employers to watch for specific red flags. These include incorrectly formatted phone numbers and inconsistent education histories. Such discrepancies often expose fraudulent identities.
US Authorities Target Nationwide Laptop Farm Operations
In June, the US government uncovered 29 illegal laptop farms nationwide. North Korean IT workers operated the farms remotely. They relied on stolen or forged American identities. The Department of Justice said the scheme helped secure jobs at US companies.
Prosecutors also charged US brokers who supported the operation. In July, an Arizona woman received a prison sentence exceeding eight years. She ran an extensive laptop farm network. The operation placed workers at more than 300 US companies. Authorities said the scheme generated more than $17m in illegal gains for her and Pyongyang.
