U.S. Citizens Sentenced to 200 Months for Masterminding $5M North Korean IT Worker Fraud

Two American citizens have been sentenced to a combined 200 months in federal prison for orchestrating a sophisticated, multi-year scheme that funneled millions to North Korea by infiltrating the U.S. freelance IT market. The operation, which ran for four years, successfully placed North Korean IT personnel—masquerading as remote workers from the U.S. and other countries—into jobs at Fortune 500 companies and a U.S. defense contractor. The fraud generated approximately $5 million in revenue for the Pyongyang regime, directly violating stringent U.S. and international sanctions.

The scheme relied on a complex web of false identities, fabricated online profiles, and stolen personal information from U.S. citizens to create a convincing facade. The North Korean workers, operating under the direction of the convicted Americans, gained access to sensitive corporate networks and proprietary information while their earnings were secretly routed back to the sanctioned state. The involvement of a U.S. defense contractor highlights the severe national security implications, exposing critical infrastructure and data to potential espionage or sabotage.

This case represents a significant escalation in the enforcement of sanctions evasion tactics, signaling intense scrutiny on the digital freelance economy as a vector for illicit financing. The sentencing underscores the Justice Department's focus on prosecuting individuals who enable North Korea's revenue generation, a key priority given the regime's continued weapons development programs. The breach at a defense contractor will likely trigger internal security reviews across the sector and increase pressure on companies to enhance vetting for remote IT contractors.