North Korean spies used AI and deepfakes to infiltrate hundreds of companies, CrowdStrike reveals
Cybersecurity firm CrowdStrike has uncovered a sweeping North Korean espionage campaign involving IT workers posing as remote freelancers. These operatives used generative AI tools to craft convincing résumés and deployed deepfakes in video calls to bypass hiring processes. Their employers, mostly unaware of the deception, have been indirectly funding North Korea’s sanctioned nuclear weapons program. The manipulated identities allowed Pyongyang to access sensitive corporate environments globally, raising significant security concerns.
This discovery highlights the growing threat of AI-assisted social engineering in corporate cybersecurity—and the need for stricter identity verification in remote hiring.
About the Author
