Amazon Blocks Over 1,800 Suspected North Korean Job Applications in Ongoing Sanctions-Evasion Scheme

byJokpeme Joseph Omode -
0

 


Amazon has revealed that it has prevented more than 1,800 job applications from suspected North Korean operatives since April 2024, highlighting a sophisticated effort by Pyongyang to infiltrate U.S. companies through remote IT positions. The disclosure underscores growing concerns over North Korea's use of fraudulent employment schemes to generate revenue and circumvent international sanctions.

In a detailed LinkedIn post, Amazon's Chief Security Officer Stephen Schmidt explained that North Korean nationals, often using fake or stolen identities, have been targeting remote IT roles worldwide, with a particular focus on U.S.-based firms. The primary goal, according to Schmidt, is to secure employment, earn salaries, and funnel the wages back to support the regime's weapons programs. Amazon reported a 27% quarter-over-quarter increase in detected DPRK-affiliated applications this year, alongside a nearly one-third overall rise in such attempts over the past year.

Schmidt noted that these operatives frequently collaborate with facilitators managing "laptop farms"—U.S.-based computers remotely controlled from abroad to create the illusion of domestic employment. This tactic helps bypass geographic restrictions and company verification processes. Detection methods at Amazon include AI-powered screening tools combined with human review, identifying red flags such as incorrectly formatted phone numbers (e.g., using "+1" instead of "1" for U.S. numbers), mismatched educational credentials (e.g., claiming degrees from universities that do not offer the listed programs), and hijacked dormant LinkedIn accounts bolstered by leaked credentials.

Despite robust defenses, Schmidt acknowledged that one operative successfully infiltrated Amazon via a third-party contractor, only to be detected through monitoring of unusual keystroke latency—approximately 110 milliseconds of delay indicating remote access from overseas. The individual was promptly removed, with no access to sensitive data.

This issue extends beyond Amazon, with Schmidt warning that similar operations are "likely happening at scale across the industry." U.S. authorities have long tracked these schemes, which violate U.N. and U.S. sanctions by generating illicit revenue for North Korea's weapons of mass destruction and ballistic missile programs.

A prominent related case involved Arizona resident Christina Marie Chapman, sentenced in July 2025 to 102 months (8.5 years) in prison for operating a laptop farm from her home. Chapman's scheme assisted North Korean IT workers in securing remote positions at over 300 U.S. companies, including Fortune 500 firms, generating more than $17 million in revenue—much of which flowed back to Pyongyang. She pleaded guilty to conspiracy to commit wire fraud, aggravated identity theft, and money laundering.

North Korea's cyber operations trace back to the mid-1990s, evolving into a formidable force under Bureau 121, a unit within the Reconnaissance General Bureau estimated to include around 6,000 elite hackers. Many operate from abroad in countries like China, Russia, India, Malaysia, and Belarus to evade detection.

In November 2025, the U.S. Treasury Department imposed sanctions on eight North Korean individuals and two entities for laundering proceeds from cybercrimes and IT worker fraud. Officials stated that DPRK-affiliated cybercriminals stole over $3 billion in the past three years, primarily through cryptocurrency thefts, to fund the regime's nuclear ambitions.

These employment scams complement North Korea's broader cyber strategy, which includes high-profile cryptocurrency heists. In 2025 alone, DPRK-linked hackers stole a record $2 billion in digital assets, contributing to a cumulative haul exceeding $6.75 billion since tracking began.

Experts emphasize that the remote work boom post-COVID has facilitated these infiltrations, allowing operatives to pose as U.S.-based professionals. Additional risks include potential data theft, installation of backdoors, and insider threats once employed.

U.S. agencies, including the FBI, State Department, and Treasury, have issued repeated advisories urging companies to enhance vetting processes—such as requiring in-person interviews where feasible, scrutinizing resumes for inconsistencies, and monitoring for anomalous network behavior.

As global tech hiring remains heavily remote, particularly in AI and machine learning fields, the threat persists. Schmidt encouraged affected organizations to query databases for suspicious patterns and report incidents to authorities, stressing shared responsibility in countering this state-sponsored fraud.

Tags

Jokpeme Joseph Omode

Jokpeme Joseph Omode is the founder and editor-in-chief of Alexa News Network (Alexa.ng), where he leads with vision, integrity, and a passion for impactful storytelling. With years of experience in journalism and media leadership, Joseph has positioned Alexa News Nigeria as a trusted platform for credible and timely reporting. He oversees the editorial strategy, guiding a dynamic team of reporters and content creators to deliver stories that inform, empower, and inspire. His leadership emphasizes accuracy, fairness, and innovation, ensuring that the platform thrives in today’s fast-changing digital landscape. Under his direction, Alexa News Network has become a strong voice on governance, education, youth empowerment, entrepreneurship, and sustainable development. Joseph is deeply committed to using journalism as a tool for accountability and progress, while also mentoring young journalists and nurturing new talent. Through his work, he continues to strengthen public trust and amplify voices that shape a better future. Joseph Omode is a multifaceted professional with over a decade years of diverse experience spanning media, brand strategy and development.

You may like these posts

Thank you for reaching out to us. We are happy to receive your opinion and request. If you need advert or sponsored post, We’re excited you’re considering advertising or sponsoring a post on our blog. Your support is what keeps us going. With the current trend, it’s very obvious content marketing is the way to go. Banner advertising and trying to get customers through Google Adwords may get you customers but it has been proven beyond doubt that Content Marketing has more lasting benefits.
We offer majorly two types of advertising:
1. Sponsored Posts: If you are really interested in publishing a sponsored post or a press release, video content, advertorial or any other kind of sponsored post, then you are at the right place.
WHAT KIND OF SPONSORED POSTS DO WE ACCEPT?
Generally, a sponsored post can be any of the following:
Press release
Advertorial
Video content
Article
Interview
This kind of post is usually written to promote you or your business. However, we do prefer posts that naturally flow with the site’s general content. This means we can also promote artists, songs, cosmetic products and things that you love of all products or services.
DURATION & BONUSES
Every sponsored article will remain live on the site as long as this website exists. The duration is indefinite! Again, we will share your post on our social media channels and our email subscribers too will get to read your article. You’re exposing your article to our: Twitter followers, Facebook fans and other social networks.

We will also try as much as possible to optimize your post for search engines as well.

Submission of Materials : Sponsored post should be well written in English language and all materials must be delivered via electronic medium. All sponsored posts must be delivered via electronic version, either on disk or e-mail on Microsoft Word unless otherwise noted.
PRICING
The price largely depends on if you’re writing the content or we’re to do that. But if your are writing the content, it is $100 per article.

2. Banner Advertising: We also offer banner advertising in various sizes and of course, our prices are flexible. you may choose to for the weekly rate or simply buy your desired number of impressions.

Technical Details And Pricing
Banner Size 300 X 250 pixels : Appears on the home page and below all pages on the site.
Banner Size 728 X 90 pixels: Appears on the top right Corner of the homepage and all pages on the site.
Large rectangle Banner Size (336x280) : Appears on the home page and below all pages on the site.
Small square (200x200) : Appears on the right side of the home page and all pages on the site.
Half page (300x600) : Appears on the right side of the home page and all pages on the site.
Portrait (300x1050) : Appears on the right side of the home page and all pages on the site.
Billboard (970x250) : Appears on the home page.

Submission of Materials : Banner ads can be in jpeg, jpg and gif format. All materials must be deliverd via electronic medium. All ads must be delivered via electronic version, either on disk or e-mail in the ordered pixel dimensions unless otherwise noted.
For advertising offers, send an email with your name,company, website, country and advert or sponsored post you want to appear on our website to advert @ alexa. ng

Normally, we should respond within 48 hours.

Previous Post Next Post

                     Copyright Notice

All rights reserved. This material, and other digital contents on this website, may not be reproduced, published, rewritten or redistributed in whole or in part without prior express written permission from Alexa News Nigeria (Alexa.ng). 

نموذج الاتصال