Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

    Security Awareness Training Blog

    FBI Issues Guidance on Thwarting North Korea’s Fraudulent IT Schemes

    KnowBe4 Team | Aug 4, 2025

    N.Korean Hacker-Web-Library-The FBI has issued an advisory warning that North Korean IT workers continue to seek fraudulent employment at Western companies.

    These workers attempt to secure multiple remote jobs in order to generate revenue for Pyongyang, and in some cases use their access to steal data or deploy ransomware. The individuals use social engineering techniques to trick employers into hiring them, then work with US-based facilitators to continue the deception.

    The advisory recommends that organizations carefully examine identity documents for misspellings or errors, and verify employment or education history by contacting former employers or schools directly.

    The FBI also recommends in-person meetings to verify that a person isn’t lying about their identity. If a virtual meeting is necessary, the Bureau offers the following advice:

    • “Mandate video and request that their backgrounds be unobscured.
    • Have the individual point the camera out a window and ask questions about their claimed current location and the location listed on their identification documents.
    • Ask the individual to wave their hand in front of their face as it may prompt a malfunction in AI generated video.”

    Additionally, the advisory notes, “Capture images for comparison with future meetings. Sometimes an individual is employed to pass the initial interview, but the on-the-job work is completed by a different individual.”

    Additionally, organizations should ensure their contractors are aware of these techniques.

    “If your company employs contracted IT workers that have been hired by a third-party company, seek to educate the third-party company about this guidance,” the FBI says. “Contract IT work is a common way that North Korean IT workers procure employment.”

    AI-powered security awareness training can give your organization an essential layer of defense against social engineering attacks. KnowBe4 empowers your workforce to make smarter security decisions every day. Over 70,000 organizations worldwide trust the KnowBe4 platform to strengthen their security culture and reduce human risk.

    The FBI has the story.

     

    Return To KnowBe4 Security Blog

    The Security Culture How-to Guide

    Improving the security culture of your organization can seem daunting. This how-to guide will walk you through how to build a step-by-step plan, helping you understand the fundamentals of security culture and what you can do to move the culture needle in your organization.

    Security-Culture-How-To-Guide

    You'll learn:

    • The fundamental ABCs of culture change and how each builds off each other
    • A seven-step cycle for improving your security culture
    • Advice and best practices for making the most out of each step in the process

    Download this guide now!

    Download the Guide

    PS: Don't like to click on redirected buttons? Cut & Paste this link in your browser:

    https://info.knowbe4.com/wp-security-culture-how-to-guide

    Topics: Cybercrime, News, Human Risk Management

    KnowBe4 Team

    ABOUT KNOWBE4 TEAM

    The KnowBe4 Team delivers timely, expert-driven insights on cybersecurity trends, emerging threat intelligence, human risk best practices, compliance strategies and industry research to help organizations strengthen their human defense layer and stay informed, resilient, and secure.

    Read more from KnowBe4 »

    Subscribe to Our Blog


    Security Awareness Training
    Blog RSS Feed
    Gartner Magic Quadrant
    All Posts

    Posts by Tag

    See all

    Posts By Topic

    View All

    Get the latest insights, trends and security news. Subscribe to CyberheistNews.