Two Americans Sentenced in North Korea-Linked Cyber Fraud Scheme
Two American nationals have been sentenced to prison for their involvement in a sophisticated scheme that enabled North Korean operatives to infiltrate US companies and generate millions in illicit revenue, according to the US Department of Justice.
Zhenxing “Danny” Wang, 39, and Kejia “Tony” Wang, 42, both from New Jersey, were sentenced by a federal court in Boston to more than seven and nine years in prison respectively after pleading guilty to their roles in the conspiracy.
How the Scheme Worked
Prosecutors said the pair acted as middlemen in a covert operation that tricked major US firms — including Fortune 500 companies — into hiring overseas tech workers linked to North Korea.
The operation relied heavily on identity theft. At least 80 Americans had their personal information stolen and used by foreign workers to secure remote IT jobs.
‘Laptop Farms’ Enabled Access to US Systems
At the center of the scheme were so-called “laptop farms” — clusters of company-issued laptops physically located in the US but remotely accessed by workers overseas.
These setups allowed North Korean operatives to appear as legitimate US-based employees, bypassing security checks and onboarding processes.
Through this access, they were able to:
- Earn salaries from US companies
- Gain entry into sensitive corporate networks
- In at least one case, steal export-controlled data from a defense contractor
Companies Targeted Across Key Sectors
Victim companies included:
- A semiconductor distributor in Massachusetts
- A software development firm in California
- A defense contractor handling sensitive technology
All were unaware they were employing foreign operatives under false identities.
Funding North Korea’s Strategic Programs
US officials say schemes like this are part of a broader effort by Pyongyang to bypass international sanctions and fund its nuclear weapons programme.
In recent years, North Korea has increasingly turned to:
- Cybercrime
- Cryptocurrency theft
- IT worker infiltration
to generate billions of dollars in revenue.
Wider Network Still Active
Authorities warn that this case is just one piece of a larger global network. The US Department of State has offered rewards of up to $5 million for information on other individuals linked to similar operations.
Security experts say these networks are evolving rapidly, often using:
- Front companies registered in the US
- Fake resumes and credentials
- Staffing agencies unknowingly facilitating hiring
Rising Threat to Global Businesses
Cybersecurity analysts caution that North Korean IT workers are increasingly embedding themselves not only in major corporations but also within subcontractors — allowing them to reach government-linked projects worldwide.
The case highlights the growing challenge for companies in verifying remote workers and protecting sensitive data in an era of globalized digital employment.
