In a time when remote work has become the norm, U.S. businesses are facing a disturbing new reality: foreign operatives—specifically from North Korea—are quietly gaining access to corporate systems by posing as legitimate remote IT professionals. It’s not science fiction. It’s not speculation. It’s already happened.
This past July, the U.S. Department of Justice announced its first major crackdown on what it called a “cyber-enabled revenue generation scheme.” In plain terms? They arrested people, seized bank accounts, and raided dozens of homes across 16 states—homes that were secretly operating as “laptop farms” for North Korean imposters. These imposters used fake résumés, stolen U.S. identities, and even deepfake video interviews to get hired by American companies. Once inside, they did the work… while quietly stealing sensitive data, siphoning cryptocurrency, and setting up access points for future attacks.
The scale of the operation was enormous. Over 100 companies were targeted. At least $3 million in losses have already been confirmed. And according to investigators, this is just the beginning. Many of these infiltrators are still working inside U.S. companies—right now.
The real twist? These weren’t “hackers” in the traditional sense. They didn’t break through firewalls. They got the job. They were hired. Some were even praised for their performance before the truth came out.
For business owners and executives, this should be a wake-up call. The risks of remote hiring aren’t just about miscommunication or time zone differences anymore. The risk is that the person behind the screen isn’t who they say they are at all.
At Flexible IT, we’re seeing more companies reevaluate the way they hire, onboard, and manage remote tech support. Many are shocked to learn how easy it is for someone to fake an identity in a fully remote environment. A convincing LinkedIn profile, a good internet connection, and an AI-generated video interview can be enough to fool even seasoned hiring managers.
One of the easiest and most overlooked solutions? Hire local.
Working with a local technology partner like Flexible IT gives you visibility and accountability. You know who’s on the other end of the screen. You can meet the people managing your systems. You know where your equipment is going, and who’s using it. You can walk in and talk to someone if something feels off.
When you choose a local partner like Flexible IT, you get more than just great support—you get peace of mind, clear accountability, and the confidence that your IT team isn’t secretly working for someone else.
Remote work is a powerful tool—but it comes with new threats. Not all of them are obvious. The convenience of hiring from anywhere also opens the door to bad actors from anywhere. And while most businesses think they’re too small to be targeted, the truth is that the smaller the business, the easier the breach. A single remote worker with admin access can quietly open the door to a network—without setting off any alarms.
That’s why we’re urging companies to take a step back and ask some tough questions:
Have you verified who’s really accessing your systems?
Do you know where your laptops are going?
Are you confident your remote staff are who they say they are?
The DOJ’s investigation is ongoing. The arrests have started. But the problem isn’t going away. It’s shifting, adapting, and continuing.
If you’re unsure whether your current IT support model is safe—or if you just want a second opinion on your remote access policies—we’re here to help. Flexible IT has been serving Long Island businesses since 1984, and we’ve built our name on trust, transparency, and local expertise. We believe your IT partner should never be a question mark.
Because in today’s world, the biggest threat might not be outside your walls. It might already be inside your network.
Explore more insights from our IT experts.
