North Korean Operatives Infiltrate U.S. Tech Companies Using Fake Identities

CrowdStrike's 2024 report details how North Korean agents obtained jobs at U.S. tech firms under false names to steal salaries and access to internal systems and data. The group exploited weak hiring checks, gaining legitimate access to code repositories and company networks—the kind of access that leaves no obvious traces during routine work.