A North Korean hacker was caught trying to get a job at a U.S. tech company, specifically the Kraken cryptocurrency exchange. The company was aware of his intentions from the start but decided to let him go through the hiring process to learn more about his methods.
The situation began to raise alarms during a video interview. The hacker used a different name than the one on his resume, and his voice changed at times, which made the interviewers suspicious. Further investigation revealed that his email was linked to a network of fake identities used by a hacking group.
When the company examined his identification, they found signs that it had been altered, possibly using details from individuals who had been victims of identity theft. To catch him off guard, the interviewers set traps during the final interview by asking him to confirm his location and suggest local restaurants. This tactic caused the hacker to become flustered. He struggled to answer simple questions, revealing that he was not a genuine candidate but rather an imposter trying to infiltrate the company.
Kraken’s chief security officer, Nick Percoco, highlighted that state-sponsored cyberattacks are a serious global issue. While some hackers break into systems, others attempt to enter companies through legitimate means. He noted that artificial intelligence is making it easier for bad actors to deceive businesses, but real-time verification can often expose their lies.
Research from the Google Threat Intelligence Group indicates that North Korean IT workers are seeking jobs at major companies in the U.S. and Europe. These jobs help generate income for the North Korean regime, and in some cases, these hackers may threaten their employers with the release of sensitive information.
This incident serves as a reminder of the ongoing risks posed by cyber threats and the need for companies to remain vigilant in their hiring practices.