Two American citizens, Kejia Wang and Zhenxing Wang, have been sentenced to prison terms of seven and a half years and nine years, respectively, for their participation in a fraudulent scheme that enabled the North Korean government to infiltrate U.S. companies with remote IT workers.
The U.S. Department of Justice revealed the sentences on Wednesday. Both individuals, residing in New Jersey, were found guilty of facilitating a network that operated "laptop farms" within the United States. This infrastructure allowed North Korean nationals to connect remotely to computers, creating the illusion that they were working locally.
This elaborate scheme generated approximately $5 million for North Korea. It involved identity theft, affecting over 80 Americans and leading to unauthorized employment at more than 100 U.S. corporations, including several Fortune 500 companies. The operation not only provided salaries to North Korean IT workers but also facilitated the theft of trade secrets and sensitive source code, as noted by the Justice Department.
John A. Eisenberg, Assistant Attorney General for National Security, emphasized the national security risks posed by this fraudulent operation, stating, "The ruse placed North Korean IT workers on the payrolls of unwitting U.S. companies and in U.S. computer systems."
Between 2021 and 2024, Kejia Wang was responsible for managing extensive laptop farms comprising hundreds of computers, while Zhenxing Wang hosted laptops in his residence. They established shell companies with financial accounts linked to these fictitious IT workers, which allowed them to funnel substantial payments overseas. The duo, alongside four other co-conspirators, reportedly received nearly $700,000 for their roles in the operation.
In one notable incident, the fake IT workers were implicated in the theft of data subject to export controls from an AI company based in California.
In a proactive measure, the U.S. government has announced rewards of up to $5 million for information that could aid in dismantling such schemes, specifically targeting nine individuals associated with the Wangs.
This legal action underscores the ongoing efforts to combat North Korea's extensive network of fraudulent IT workers, which has infiltrated numerous American and Western companies. Innovative strategies are emerging among companies and recruiters to identify potential North Korean operatives. For instance, some interviewers have begun asking candidates to make derogatory remarks about Kim Jong-Un, a tactic that has proven effective in revealing false identities.
As the landscape of cybersecurity evolves, these developments highlight the importance of vigilance and innovative solutions in protecting national and corporate security in the digital age.
