Last week, CoinDesk's Sam Kessler reported that developers and IT workers employed by the Democratic People's Republic of Korea - i.e. North Korea - had managed to get themselves hired by a number of crypto projects, giving them two different ways of raising funds for the national regime.
Projects that are compromised by vulnerabilities inserted by these employees also risk losing more funds to North Korea. It's not just a hypothetical concern; prosecutors have brought various charges alleging DPRK-affiliated IT workers were able to compromise companies.
North Korea is under heavy sanctions, meaning hiring developers from the country would put a project in violation of U.S. law. It also seems clear that some of these employees enabled the projects they worked for to be hacked.
Sanctions concerns first: Any company that hires an employee based in North Korea violates U.S. sanctions law. It doesn't necessarily matter if this hiring was inadvertent - the companies can be prosecuted regardless.
Collection
[
|
...
]