U.S. Sanctions North Korean Remote‑IT Network Funding Weapons Programs

The U.S. Treasury Department’s Office of Foreign Assets Control on Thursday sanctioned six individuals and two companies accused of helping North Korea run a global scheme in which remote information‑technology workers, using stolen identities and fake online personas, infiltrated legitimate businesses and funneled hundreds of millions of dollars to Pyongyang’s weapons programs. Officials say the operation generated nearly $800 million in 2024, with much of the workers’ wages siphoned off to support North Korea’s nuclear weapons and ballistic‑missile development, and in some cases used to plant malware and steal proprietary data from company networks. The targets include North Korea’s Amnokgang Technology Development Company, alleged to dispatch IT workers overseas and procure military and commercial technology, and Vietnam‑based Quangvietdnbg International Services Company Limited and its CEO Nguyen Quang Viet, accused of converting about $2.5 million into cryptocurrency for North Koreans between mid‑2023 and mid‑2025. Another designated North Korean, Yun Song Guk, is alleged to have run a group of freelance IT workers out of Boten, Laos to coordinate illicit contracts and payments, alongside associates of previously sanctioned nuclear‑procurement facilitator Kim Se Un. The sanctions block any property and interests in property of these actors within U.S. jurisdiction and bar U.S. persons from dealings with them, with Treasury warning that banks and intermediaries risk steep penalties if they help the network evade restrictions, amid broader U.S. alarm over Pyongyang’s growing reliance on cyber operations and remote tech work to generate hard currency.