North Korean hackers steal information from legitimate resumes on various recruiting platforms such as LinkedIn. They use the stolen data to get jobs with cryptocurrency companies in North America and Europe.
Cybercriminals hide their North Korean origins and pose as South Koreans, Japanese, Africans, or Southeast Asians, according to a Bloomberg report. They use stolen information to pretend they have the technical skills needed to work in the blockchain and cryptocurrency space. For example, many of them claim to be senior developers, application designers, etc.
They actively explore current trends on GitHub and other similar platforms. This gives you the opportunity to determine which skills are most in demand and adjust your resume to match current demand.
Make money or spy?
So far, the reasons for this behavior remain unclear. On the one hand, North Koreans may simply be looking for better career opportunities in wealthier countries. On the other hand, it could also be a government initiative to prevent money laundering or international sanctions.
North Korea is known for supporting cyberattacks and training hackers. One of the most famous bands from this country is the Lazarus Group. He is suspected (although the allegations have not been confirmed) of committing numerous cybercrimes, including the infamous Cryptopia hack.
According to Qualys Inc., in February 2022, they used phishing malware to attack Lockheed Martin Corp. job seekers. However, it is not known how many of these applicants actually got the job. Whether these workers actually harm their employers over time remains to be seen.
https://coinidol.com/hackers-copypaste-linkedin-resumes/ North Korean hacker copies LinkedIn resume to get a job at a cryptocurrency company