Osmond ChiaBusiness reporter
Getty Images
A top Amazon executive has said the US technology giant has blocked more than 1,800 job applications from suspected North Korean agents.
North Koreans tried to apply for remote working IT jobs using stolen or fake identities, Amazon's chief security officer Stephen Schmidt said in a LinkedIn post.
"Their objective is typically straightforward: get hired, get paid, and funnel wages back to fund the regime's weapons programs," he said, adding that this trend is likely to be happening at scale across the industry, especially in the US.
Authorities in the US and South Korea have warned about Pyongyang's operatives carrying out online scams.
He said the operatives typically work with people managing "laptop farms" - referring to computers based in the US that are run remotely from outside of the country.
The firm used a combination of artificial intelligence (AI) tools and verification by its staff to screen job applications, he said.
The strategies used by such fraudsters have become more sophisticated, Mr Schmidt said.
Bad actors are hijacking dormant LinkedIn accounts using leaked credentials to gain verification. They target genuine software engineers to appear credible, he said, urging firms to report suspicious job applications to the authorities.
Mr Schmidt warned employers to look out for indicators of fraudulent North Korean job applications, including incorrectly formatted phone numbers and mismatched education histories.
They used stolen or forged identities of Americans to help North Korean nationals get jobs in the US, said the Department of Justice (DOJ).
It also indicted US brokers who had helped secure jobs for the North Korean operatives.
The DOJ said the scheme generated more than $17m (£12.6m) in illicit gains for her and Pyongyang.