U.S. Imposes Sanctions on North Korean Entities for Fraudulent IT Schemes

---

TL;DR

The U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) has imposed sanctions on three North Korean individuals and a company for their involvement in fraudulent IT worker schemes. These schemes generated illicit revenue for the North Korean government. The sanctions aim to disrupt North Korea’s illegal activities and protect the global financial system.

U.S. Sanctions Target North Korean IT Fraud Schemes

The U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) has announced sanctions against three North Korean nationals and a company involved in fraudulent IT worker schemes. These schemes have been generating illicit revenue for the Democratic People’s Republic of Korea (DPRK) government. The sanctions are part of ongoing efforts to disrupt North Korea’s illegal activities and protect the global financial system¹.

Key Individuals and Entities Sanctioned

The sanctioned individuals and company are:

• Pak Kwang Hun: A key figure in orchestrating the IT fraud schemes.
• Kim Kyong Nam: Involved in managing the fraudulent operations.
• Choe Song Chol: Played a critical role in the financial aspects of the schemes.
• Chosun Export and Import Company: The company facilitating these illegal activities.

These entities have been instrumental in helping the DPRK government evade international sanctions and fund its illicit programs.

Implications of the Sanctions

The sanctions impose significant restrictions on the targeted individuals and company, including:

• Asset Freezes: All property and interests in property of the designated individuals and company within U.S. jurisdiction are blocked.
• Travel Bans: The sanctioned individuals are subject to travel restrictions.
• Prohibition of Transactions: U.S. persons are generally prohibited from engaging in transactions with the designated entities.

These measures aim to disrupt the DPRK’s ability to generate revenue through illegal means and to maintain pressure on the regime to denuclearize.

Global Impact and Cybersecurity Concerns

The fraudulent IT worker schemes highlight the growing threat of North Korean cyber activities. These schemes often involve:

• Phishing Attacks: Targeting unsuspecting individuals and organizations.
• Malware Deployment: Compromising systems to steal data and funds.
• Cryptocurrency Theft: Exploiting vulnerabilities in cryptocurrency exchanges.

The global cybersecurity community must remain vigilant against such threats and implement robust security measures to safeguard against these attacks.

Conclusion

The U.S. sanctions against North Korean entities involved in fraudulent IT worker schemes are a critical step in combating the DPRK’s illicit activities. These measures underscore the importance of international cooperation in maintaining global financial stability and cybersecurity. As the threat landscape continues to evolve, sustained efforts will be necessary to counteract such malicious activities and ensure a secure digital environment.

Additional Resources

For further insights, check:

• U.S. Department of the Treasury Press Release
• Bleeping Computer Article

References

1. (July 25, 2025). “US sanctions North Korean firm, nationals behind IT worker schemes”. Bleeping Computer. Retrieved July 25, 2025. ↩︎