North Korean officials have labeled the U.S. Department of Justice’s recent actions as an “absurd smear campaign.” This statement came after the DOJ disclosed that they had uncovered multiple schemes allegedly orchestrated by North Korea to fund its administration through remote IT work for U.S. companies.
This week, the DOJ indicated that a North Korean hacker had been aided by individuals from the U.S. and China, including Taiwan, to secure jobs with over 100 American companies, some of which are Fortune 500 firms. The operation reportedly involved these workers receiving laptops from their employers, enabling North Korean IT professionals to work remotely. In a separate effort, North Korean IT workers reportedly used fake identities to gain employment at a blockchain company in Atlanta, Georgia, netting over $900,000 in stolen cryptocurrency.
As part of this announcement, the DOJ also filed a five-count indictment against Senxing One, a U.S. citizen residing in New Jersey. The indictment claims that from 2021 to 2024, the defendants, including various Chinese nationals, unlawfully accessed the identities of more than 80 individuals in the U.S. to secure remote positions, resulting in the victim companies incurring losses upwards of $3 million due to legal costs and network repairs.
North Korean state media reported a spokesman from the Foreign Ministry condemned the DOJ’s actions, characterizing them as violations of sovereignty aimed at undermining North Korea’s national image. The spokesman asserted that these allegations of cybercrimes are part of a broader narrative created by the U.S. to portray North Korea as a cyber threat.
The DOJ indictment suggests that individuals from the U.S., including Kejia “Tony” Wang of New Jersey, played a pivotal role in supporting these schemes. They allegedly established shell companies with fabricated affiliations to present the remote IT workers as legitimate employees of U.S. firms. For their assistance, they reportedly received around $696,000 from the overseas IT workers.
This situation underscores tensions in international cyberspace, with both sides exchanging accusations over cyber threats and violations. The North Korean response highlights their claim of being under constant threat to their cybersecurity, while the U.S. insists on safeguarding its own interests against sophisticated cyberattacks.
In a related development, the DOJ announced the seizure of 17 web domains and 29 financial accounts tied to these illicit operations, further complicating the ongoing narrative around cybersecurity and international relations between the U.S. and North Korea.
