Microsoft Threat Intelligence

Subscribe to Microsoft Threat Intelligence via RSS

DOJ’s Big Win in North Korean IT Worker Fraud Scheme

By Linn Foster Freedman on April 23, 2026

On April 15, 2026, the Department of Justice (DOJ) announced that two U.S. nationals, Kejia Wang and Zhenxing Wang, were sentenced for facilitating a North Korean IT worker scheme that compromised over 80 U.S. identities, with sentences of 108 and 92 months respectively, supervised release, and forfeiture orders.

The scheme involved the defendants operating “laptop…

North Korean Threat Groups Using AI in Remote Technical Employee Schemes

By Linn Foster Freedman on March 12, 2026

Posted in Artificial Intelligence

Microsoft Threat Intelligence issued a report on March 6, 2026, entitled, “AI as tradecraft: How threat actors operationalize AI,” which outlines how threat actors, including those from North Korea, are “operationalizing AI along the cyberattack lifecycle…to bypass safeguards and perform malicious activity.” The threat actors are adopting AI “as operational enablers, embedding AI…

Data Privacy + Cybersecurity Insider

Microsoft Threat Intelligence

North Korean Threat Groups Using AI in Remote Technical Employee Schemes

Topics

Archives