In a startling cyber-age twist, North Korean operatives are infiltrating corporate networks not through espionage—but by posing as remote IT professionals. According to the FBI, thousands of DPRK-trained tech specialists have secured high-paying jobs at U.S. and international companies, channeling an estimated $1 billion in earnings to fund Kim Jong Un’s nuclear program.

Using AI-generated résumés, fake LinkedIn profiles, and even deepfaked video identities, these operatives blend seamlessly into virtual workplaces—writing code, joining Slack channels, and attending Zoom meetings under stolen identities. “This is a code red,” warned U.S. Attorney for D.C. Jeanine Pirro. “Your tech sectors are being infiltrated by North Korea.”

Beyond breaching cybersecurity, the scam exposes firms to international sanctions violations and moral hazards. Many of these so-called “workers” live under coercion—trafficked abroad, forced to meet profit quotas for Pyongyang, and punished if they fail.

With intrusions up 220% in the past year, investigators say the operation now spans Fortune 500 firms, defense contractors, and financial institutions. The chilling reality: the next line of malicious code could be written by someone inside your own company’s network.

As nations tighten screening and AI-generated identity verification grows harder to trace, one truth remains—the call is coming from inside the (digital) house.