The Department of Justice (DOJ) has revealed a significant case involving identity theft and other crimes linked to North Korea. Prosecutors allege that North Korean IT workers have been infiltrating and defrauding U.S. companies in what is believed to be the biggest case of its kind. The scheme involved thousands of skilled IT workers using stolen identities to infiltrate U.S. companies and raise money for North Korea’s weapons program.
Court documents reveal that the scheme began in early 2020, with overseas IT workers stealing U.S. identities to secure jobs at U.S. companies. They then accessed the internal systems of these companies, stealing data, money, and falsely reporting their earnings to the IRS. Christina Marie Chapman, a U.S. citizen, is among those charged in the case. She is accused of helping validate stolen identity information for the IT workers, assisting them in gaining employment at Fortune 500 companies.
Chapman faces charges including conspiracy to defraud the U.S., wire fraud, bank fraud, identity theft, money laundering, and more. She has not entered a plea yet and could potentially face 97.5 years in prison if convicted. The John Does involved in the scheme are still at large, with a reward of up to $5 million being offered for information leading to their capture. The DOJ urges anyone with information to come forward.
Another individual, Oleksandr Didenko from Ukraine, has also been charged in a separate scheme linked to North Korean IT workers. Didenko allegedly ran a website that provided services to remote IT workers, allowing them to rent or buy accounts in fake identities. He facilitated fraudulent interviews and provided various payment options, including stablecoin cryptocurrency and U.S. Money Service Transmitters. Didenko is currently in custody in Poland, facing extradition to the U.S.
In response to the threat posed by North Korean IT workers, the FBI, State Department, and Treasury Department issued an advisory in 2022, alerting the public and private sector to the dangers. In 2023, updated guidance was issued with new indicators for identifying North Korean IT worker fraud and additional due diligence measures. U.S. companies are encouraged to report any suspicious activities related to North Korean IT workers to local field offices to prevent further incidents.
The case highlights the ongoing danger of cybercrime and the need for increased vigilance in protecting sensitive information. The U.S. government is committed to prosecuting those involved in such complex criminal schemes and ensuring the security of American companies and government agencies against foreign threats. The collaboration between law enforcement agencies and international partners is essential in combating cyber threats and safeguarding national security.
