Security Stop Press : Hiring a Hacker?

August 15, 2024

Security Stop Press : Hiring a Hacker?

It’s been reported that US Security Awareness Training Company ‘KnowBe4’ unknowingly hired a North Korean hacker as a (remote) software engineer. The hacker used stolen identity and AI-generated imagery to circumvent KnowBe4’s due diligence and was even able to make it through four rounds of interviews before being offered the position.

However, KnowBe4 discovered the hacker's true identity during a routine security audit when they noticed that a series of suspicious actions had been performed by the new employee. Once identified, the hacker's access was immediately revoked, the breach was reported to authorities, and the incident, described as an “organisational learning moment” prompted an internal review.

KnowBe4 has suggested that this incident may be part of a broader North Korean campaign to infiltrate US organisations by posing as remote IT staff. The advice to businesses is that HR departments should thoroughly scrutinise remote candidates, especially for critical infrastructure roles or positions with access to sensitive data.

Featured Article : AI Isn't Slashing Jobs or Wages (Yet)

Featured Article : AI Isn't Slashing Jobs or Wages (Yet)

May 7, 2025
Despite the whirlwind of hype, new research suggests that generative AI chatbots like ChatGPT and Claude have, so far, made barely a ripple in the labour market, leaving jobs and wages largely untouched.
Tech Insight : How Marks & Spencer Was Brought To A Standstill

Tech Insight : How Marks & Spencer Was Brought To A Standstill

May 7, 2025
In this Tech Insight, we look at how a major ransomware attack on M&S could happen, who was behind it, how it caused such widespread disruption, and what it means for the company, its customers, and the wider UK retail sector.
More Posts