Analysis

Amazon chief security officer Steve Schmidt reported that Amazon has identified and blocked more than 1,800 attempts by North Korea to secure IT roles, and that such applications rose 27% quarter-over-quarter in 2025; notable enforcement examples cited include four North Korean nationals charged in an alleged scheme to steal nearly $1 million in cryptocurrency and a U.S. conspirator sentenced to eight years for a $17 million identity-theft ring. The article documents an escalation in tactics: actors have evolved from fabricated online profiles to purchasing legitimate U.S. identities and creating fake job-application platforms to target high-paying AI/ML roles and access proprietary data. Amazon is deploying a mixed defense of AI-enabled detection and human controls—training models to flag resume anomalies (e.g., a leading plus sign in phone numbers, ~200 suspect academic institutions, fictitious employers), increasing in-person interviews, instituting multi-stage identity checks, and using its Midway authentication with Universal 2nd Factor physical keys. The broader market context shows rising security costs and hiring frictions for tech firms, reported pressure on AI-exposed stocks (CoreWeave’s $33 billion market cap decline cited) and regulatory noise around AI, implying that firms demonstrating effective identity and agent governance reduce operational and reputational risk amid a moderately negative, defensive sentiment backdrop.