Nail salon worker pleads guilty in North Korea-linked remote job scam

MARYLAND, UNITED STATES — A Maryland nail salon employee has pleaded guilty to conspiracy to commit wire fraud after authorities uncovered he acted as a front for North Korean operatives, holding 13 remote IT jobs for American companies while the actual work was carried out by developers in China. 

Minh Phuong Ngoc Vong, 40, of Bowie, is set to be sentenced in August and faces up to 20 years in prison for his role in a scheme that netted him more than $970,000 between 2021 and 2024.

Fake resumé, real access to sensitive systems

According to the United States Department of Justice, Vong, who had no formal IT training or degree, allowed foreign nationals to use his identity to secure jobs that included contracts with sensitive government agencies such as the Federal Aviation Administration (FAA). 

The developers, believed to be North Korean operatives based in Shenyang, China, accessed U.S. government systems remotely, raising significant national security concerns.

Court records show Vong was approached by a man calling himself “William James” via a gaming app. James and his associates fabricated a résumé for Vong, claiming he had a University of Hawaii degree, 16 years of experience, and secret-level security clearance. 

Vong admitted that he never held such qualifications. “James” and others then used Vong’s credentials to apply for and perform sensitive tech jobs from overseas.

North Korean IT worker schemes fund nuclear, missile programs

Authorities allege this case is part of a vast fraud operation funding North Korea’s illegal nuclear weapons and ballistic missile programs. The United Nations estimates such schemes generate $250 million to $600 million annually for the regime.

The U.S. Federal Bureau of Investigation, State Department, and Department of Justice report thousands of North Korean IT workers have infiltrated hundreds of Fortune 500 companies, often using American facilitators and “computer farms” to make it appear the work is being done in the U.S.

Global surge in job scams raises cybersecurity concerns

In the United States, job scams surged by 118% in 2023 compared to the previous year, according to the Identity Theft Resource Center (ITRC). Kenya and South Africa also reported upticks in fake job offers, which underscores the seriousness of this growing threat.

The sudden surge in job scams can be partially attributed to the advancement of artificial intelligence technology, which has made it easier for scammers to create authentic-looking fake job postings.

In 2022, consumers reported $367 million in losses to job and business opportunity scams, a 76% increase from the previous year, with the average victim losing about $2,000, according to the Federal Trade Commission.