Amazon has blocked more than 1,800 job applications linked to suspected North Korean operatives. Amazon chief security officer Stephen Schmidt revealed the action publicly. He shared the details in a LinkedIn post. The applicants focused on remote IT roles across the company. They relied on stolen or fabricated identities to pass hiring checks.
Remote Hiring Exploited to Finance Pyongyang
Schmidt said the applicants pursued a direct and repeatable goal. They aimed to get hired and receive salaries. They then redirected wages back to North Korea. The funds supported weapons development and state programs. Schmidt warned the activity likely affects much of the technology industry. He said the problem appears widespread, especially in the United States.
US and South Korean authorities have issued similar warnings. They have tracked online scams tied to North Korean operatives. Officials said these operations increasingly target Western employers.
Suspicious Applications Rise Sharply at Amazon
Amazon recorded a nearly one-third increase in such applications over the past year. Schmidt said many operatives worked with partners inside the United States. These partners ran so-called laptop farms. The farms used computers physically based in the US. Operators controlled the machines remotely from abroad.
Amazon used artificial intelligence tools alongside staff verification. Employees screened applications and reviewed identity markers. The company relied on these combined methods to stop coordinated fraud.
Identity Fraud Becomes Harder to Detect
Schmidt said the tactics have grown more sophisticated. Fraudsters hijack dormant LinkedIn accounts using leaked login credentials. They impersonate real software engineers to appear legitimate. Schmidt urged companies to report suspicious applications to authorities.
He advised employers to watch for specific warning signs. These include incorrectly formatted phone numbers and inconsistent education histories. Such details often reveal fraudulent identities.
US Investigators Uncover Extensive Laptop Farm Network
In June, the US government uncovered 29 illegal laptop farms nationwide. North Korean IT workers operated the farms remotely. They used stolen or forged American identities. The Department of Justice said the scheme helped secure jobs at US companies.
Prosecutors also charged US brokers who supported the operation. In July, a woman from Arizona received a prison sentence exceeding eight years. She ran a large laptop farm network. The operation placed workers at more than 300 US companies. Authorities said the scheme generated more than $17m in illegal gains for her and Pyongyang.
