Cyber Crime & ForensicIdentity & AccessPress Release

KnowBe4 Issues Warning to Organisations After Hiring Fake North Korean Employee

KnowBe4, the provider of the world’s largest security awareness training and simulated phishing platform, today announced it has issued a warning regarding a North Korean fake employee hiring scam, which the organisation recently experienced and successfully mitigated.

KnowBe4 recently released public information about how a North Korean “fake employee” was accidentally hired and detected. The fake employee was detected very quickly after they started to access the laptop that was sent to them in unusual ways. Their restricted (or limited) – onboarding access was shut down within 25 minutes of the first security alert. No illegal access was gained, and no data was lost, compromised, or exfiltrated on any KnowBe4 systems.

“There are common signs of this fake employee hiring scheme both during and after the hiring process,” said Stu Sjouwerman, CEO, KnowBe4. “Every organisation should educate all employees involved in the hiring process about the risks and consider various mitigation tactics such as updating the organisation’s hiring process to include asking the candidate to submit fingerprints for identity verification purposes, threat model the organisation’s hiring process, and more. We were inspired to share our experience with this unfortunate situation to bring awareness to how pervasive this situation is and to use it as a warning to help protect other organisations from falling victim.”

Download the North Korean Fake Employees Are Everywhere! How To Protect Your Organisation White Paper

This new whitepaper details what the North Korean fake employee industry is like, shares many of the signs to look for and discusses many ways organisations can update their hiring policies to prevent hiring fake employees. To download the North Korean Fake Employees Are Everywhere! How To Protect Your Organisation white paper, visit here. For more information on KnowBe4, visit www.knowbe4.com.

CSA Editorial

Launched in Jan 2018, in partnership with Cyber Security Malaysia (an agency under MOSTI). CSA is a news and content platform focusing on key issues in cybersecurity in the region. CSA is targeted to serve the needs of cybersecurity professionals, IT professionals, Risk professionals and C-Levels who have an obligation to understand the impact of cyber threats.

Related Articles

Leave a Reply

Your email address will not be published. Required fields are marked *