Post

Arizona Woman Sentenced for Aiding North Korea in Massive U.S. IT Job Fraud Scheme

Arizona Woman Sentenced for Aiding North Korea in Massive U.S. IT Job Fraud Scheme

TL;DR

Christina Marie Chapman from Arizona has been sentenced to 102 months in prison for her role in aiding North Korean IT workers in infiltrating over 300 U.S. companies through fake IT job placements. This scheme, unveiled by the Justice Department in May 2024, is one of the largest of its kind, utilizing stolen identities and U.S. payment platforms to defraud companies and generate revenue for North Korea’s illicit activities.

Arizona Woman Sentenced for Role in North Korean IT Job Fraud Scheme

Arizona Woman Receives 8-Year Sentence for Assisting North Korean-Linked Fraudsters in Infiltrating 309 U.S. Firms

Christina Marie Chapman (50) from Arizona has been sentenced to 102 months in prison for her role in aiding North Korean IT workers in infiltrating 309 U.S. companies. She pleaded guilty to multiple charges, including aggravated identity theft, conspiracy to defraud the U.S., and conspiracy to commit money laundering, wire fraud, identity fraud, and bank fraud. Chapman was charged alongside Ukrainian national Oleksandr Didenko as part of a larger scheme involving the fraudulent placement of IT workers in U.S. companies.

FBI and Justice Department Warnings

In May 2024, the FBI issued an advisory alerting the public and private sectors about the threat posed by North Korean IT workers to U.S. businesses. The Justice Department also unsealed charges against Chapman, Didenko, and three unidentified foreign nationals for their roles in the scheme. This operation is reportedly the largest of its kind ever prosecuted by U.S. authorities.

Scheme Details

The scheme, which operated from October 2020 to October 2023, involved North Korean IT workers using stolen U.S. identities to apply for remote IT jobs. These workers defrauded over 300 U.S. companies, utilizing U.S. payment platforms, online job sites, and proxy computers. The Justice Department estimates that the scheme generated at least $17.1 million in revenue for North Korea, potentially financing the country’s illicit nuclear program.

Arrests and Charges

Christina Marie Chapman was arrested in May 2024 in Litchfield Park, Arizona, while Oleksandr Didenko was arrested in Poland a few days earlier. Didenko ran a multi-year scheme creating accounts on U.S.-based freelance IT job platforms and money service transmitters using false identities. He managed about 871 proxy identities and facilitated at least three U.S.-based laptop farms, hosting around 79 computers. Didenko faces up to 67.5 years in prison if convicted.

Impact on U.S. Companies

According to the Justice Department, Chapman and her co-conspirators obtained jobs at 309 U.S. companies, including Fortune 500 corporations. The impacted companies spanned various sectors, including technology, aerospace, automotive, retail, and media. The IT workers also attempted to infiltrate two U.S. government agencies, although these efforts were largely unsuccessful.

Chapman’s Role

Christina Chapman operated a “laptop farm” from her home, hosting devices from U.S. companies to help North Korean IT workers pose as U.S.-based employees. She shipped 49 devices abroad, including to a Chinese city near North Korea. Over 90 laptops were seized from her home. Chapman helped generate over $17.1 million through the scheme, using stolen identities to report fake income and funneling wages to overseas recipients.

North Korean IT workers
Christina Chapman organized and stored U.S. company laptops in her home, including notes identifying the U.S. company and identity associated with each laptop.

Conspiracy and Financial Impact

The conspiracy compromised the identities of 68 U.S. persons, creating false tax liabilities for these victims. The scheme applied for or obtained remote jobs at 309 U.S. companies and 2 international companies, conveying false information to the Department of Homeland Security on more than 100 occasions. In 2024, a United Nations Panel of Experts report estimated that the technology sector continues to be a key revenue source for North Korea, with an estimated 3,000 North Korean IT workers abroad and another 1,000 operating within North Korea, generating $250 million to $600 million annually.

Follow for More Updates

Follow me on Twitter, Facebook, and Mastodon for more updates.

Pierluigi Paganini

SecurityAffairs – hacking, North Korea

For more details, visit the full article: source


Conclusion

The sentencing of Christina Marie Chapman highlights the ongoing threat of North Korean IT workers infiltrating U.S. companies through fraudulent means. This scheme not only compromised the identities of U.S. citizens but also generated significant revenue for North Korea’s illicit activities. The coordinated efforts of the FBI and the Justice Department were crucial in uncovering and prosecuting this extensive fraud operation.

References

This post is licensed under CC BY 4.0 by the author.