Weapons of mass destruction
According to the RCMP, earnings from these freelancers are believed to be funnelled into the DPRK’s weapons of mass destruction and ballistic missile programmes. This financing route is prohibited by United Nations Security Council resolutions.
The security alert also warned that these freelancers, once granted access to company systems, may insert passive malware or backdoors into software. These actions could enable unauthorised monitoring, information gathering, or future cyber exploitation.
“Through privileged access to companies’ networks and critical infrastructure, North Korean IT workers may insert passive malware and backdoors in program codes that can collect information, monitor traffic, or facilitate future exploitation, thereby exposing companies to the risk of corporate espionage and data theft,” the alert said.
Red flags for North Korean IT workers
Small and medium-sized businesses, particularly those with limited screening processes or hiring through freelance platforms, are considered more susceptible.
The RCMP outlined several indicators that companies may be dealing with a North Korean-linked worker. These include:
Source: RCMP issues warning on North Korean freelancers
