Lazarus Group’s Famous Chollima unit has been caught “live on camera” running its remote IT worker scheme, after researchers funneled its operatives into fake laptops that were actually long‑running sandbox environments under full surveillance.
This matches a broader Famous Chollima pattern in which DPRK operators either steal CVs outright or convince mostly junior engineers to “rent” their identities so that North Korean staff can infiltrate U.S. finance, crypto/Web3, healthcare, and even civil engineering firms.
People are actually giving full computer access over to randoms from the internet ?
People are actually giving full computer access over to randoms from the internet ?
🤦♂️
“They are paying me money. Should be legit”