Amazon blocks 1,800 job applications from suspected North Korean agents

A top Amazon executive has said the US technology giant has blocked more than 1,800 job applications from suspected North Korean agents.

North Koreans tried to apply for remote working IT jobs using stolen or fake identities, Amazon’s chief security officer Stephen Schmidt said in a LinkedIn post.

“Their objective is typically straightforward: get hired, get paid, and funnel wages back to fund the regime’s weapons programs,” he said, adding that this trend is likely to be happening at scale across the industry, especially in the US.

Authorities in the US and South Korea have warned about Pyongyang’s operatives carrying out online scams.

Amazon has seen a nearly one-third increase in job applications from North Koreans in the past year, said Mr Schmidt in his post.

He said the operatives typically work with people managing “laptop farms” – referring to computers based in the US that are run remotely from outside of the country.

The firm used a combination of artificial intelligence (AI) tools and verification by its staff to screen job applications, he said.

The strategies used by such fraudsters have become more sophisticated, Mr Schmidt said.

Bad actors are hijacking dormant LinkedIn accounts using leaked credentials to gain verification. They target genuine software engineers to appear credible, he said, urging firms to report suspicious job applications to the authorities.

Mr Schmidt warned employers to look out for indicators of fraudulent North Korean job applications, including incorrectly formatted phone numbers and mismatched education histories.

In June, the US government said it had uncovered 29 “laptop farms” that were being operated illegally across the country by North Korean IT workers.

They used stolen or forged identities of Americans to help North Korean nationals get jobs in the US, said the Department of Justice (DOJ).

It also indicted US brokers who had helped secure jobs for the North Korean operatives.

In July, a woman from Arizona was sentenced to more than eight years in jail for running a laptop farm to help North Korean IT workers secure remote jobs at more than 300 US companies.

The DOJ said the scheme generated more than $17m (£12.6m) in illicit gains for her and Pyongyang.