US DOJ sentences nationals for laptop farms enabling North Korean fraud
On April 15, the U.S. Department of Justice announced the sentencing of two U.S. nationals in the case U.S. v. Wang in the District of Massachusetts. The defendants operated so‑called “laptop farms” that allowed North Korean operatives to secure remote information‑technology positions at more than 100 U.S. companies using stolen American identities.
The scheme cycled at least 80 stolen identities through fraudulent employment over several years, generating over $5 million in illicit revenue and exposing the employer companies to cybersecurity breaches, export‑control violations and reputational damage. The operation highlighted how remote hiring removes traditional in‑person verification, making it easier for fraudsters to exploit digital identity checks, scanned documents and limited location validation.
Beyond payroll loss, the fraud poses broader risks, including sanctions evasion, theft of intellectual property and network compromise. Emerging technologies such as AI‑generated identities and deep‑fake interviews further lower the cost and increase the credibility of such schemes, underscoring a growing threat to employers in the remote‑work era.