Crypto Journalist
Amin Ayan
Crypto Journalist
Amin Ayan
Share
An Arizona-based TikTok influencer has been sentenced to eight and a half years in prison for her role in a North Korean plot to infiltrate the U.S. tech workforce and fund the regime’s weapons program.
Key Takeaways:
- Christina Chapman was sentenced to 8.5 years for helping North Korean IT workers infiltrate US tech jobs.
- She ran a “laptop farm” and laundered wages, aiding over 300 job placements.
- The scheme is part of a broader effort by North Korea to fund its weapons program.
Christina Marie Chapman, who gained popularity online for her freelance lifestyle content, was convicted in Washington, D.C. on charges of wire fraud conspiracy, aggravated identity theft, and money laundering.
In addition to prison time, Chapman was ordered to forfeit over $284,000 and pay restitution of $176,850. She will also serve three years of supervised release.
TikToker Ran ‘Laptop Farm’ to Help North Korean IT Workers Pose as US Employees
According to prosecutors, Chapman operated a “laptop farm” from her home, allowing North Korean IT workers to remotely access U.S.-based networks while appearing to be physically located inside the country.
Between 2020 and her arrest, she helped operatives obtain remote roles at more than 300 American companies, including Fortune 500 firms, a major television network, and a leading aerospace manufacturer.
“Even an adversary as sophisticated as the North Korean government can’t succeed without the assistance of willing U.S. citizens like Christina Chapman,” said Roman Rozhavsky, Assistant Director of the FBI’s Counterintelligence Division.
This unassuming Arizona woman, Christina Marie Chapman, pled guilty yesterday to running a sophisticated fraud scheme, illegally generating $17 million for North Korea by enabling their IT workers to pose as U.S. citizens and secure jobs at over 300 American companies.… pic.twitter.com/rT7M98pIsg
— AZ Annie Oakley (@AZAnnieOakley) February 12, 2025
US authorities say North Korea has built a global network of IT operatives who use fake identities and proxy networks to secure jobs and channel funds to the regime.
Chapman’s activities helped facilitate these efforts by setting up U.S.-based internet access, laundering wages through personal bank accounts, and shipping laptops overseas, including multiple devices sent to a Chinese city near North Korea.
Investigators seized more than 90 laptops from her residence and discovered she had sent 49 more abroad.
The wages earned by the North Korean agents were misreported to the US tax and social security agencies under stolen or borrowed American identities.
The crypto sector remains a key target in this operation. According to Chainalysis, North Korean-linked hackers stole $1.34 billion in cryptocurrency in 2024 alone, up 21% from the previous year.
Cybersecurity experts say North Korean job seekers are increasingly sophisticated, often hiring European actors to front video interviews while using VPNs and proxy IPs to conceal their locations.
North Korea Linked to Major Crypto Hacks
North Korea has also been linked to several other major crypto heists, including those targeting Bybit, the Ronin Bridge, Harmony, and various DeFi platforms.
Global law enforcement is responding. The U.S. Department of Justice recently moved to seize over $7.7 million in digital assets tied to North Korean IT workers embedded in blockchain firms.
Meanwhile, the U.S. and South Korea signed a bilateral agreement in 2023 to enhance their technical capabilities in detecting and countering DPRK cyber operations.
North Korean cyber strategies continue to evolve. In April, Lazarus-linked operatives reportedly set up US-based shell companies to distribute malware to crypto developers.
Kraken recently thwarted an infiltration attempt by a suspected North Korean posing as a job candidate.
Discover more from Earlybirds Invest
Subscribe to get the latest posts sent to your email.
