The Trump administration moved to dismantle a sophisticated network of overseas laborers on Thursday, blacklisting six individuals and two companies accused of orchestrating North Korean information technology schemes that targeted American businesses.
According to the Treasury Department’s Office of Foreign Assets Control (OFAC), these operations functioned as a primary financial engine for North Korea’s weapons of mass destruction (WMD) programs, generating nearly $800 million in 2024.
Officials say these workers relied on stolen identities, fraudulent documentation, and fake personas to bypass security screenings and secure remote employment at legitimate U.S. firms.
Once hired, the workers allegedly funneled the vast majority of their wages back to the North Korean government, a direct violation of U.S. and United Nations sanctions.
“The North Korean regime targets American companies through deceptive schemes carried out by its overseas IT operatives, who weaponize sensitive data and extort businesses for substantial payments,” Treasury Secretary Scott Bessent said in an official statement. He added that under President Trump’s leadership, the department would continue to “follow the money” to protect domestic businesses and ensure accountability.
READ: ODU Shooter In Virginia Identified As Former National Guardsman With ISIS Conviction
The latest round of sanctions targets specific networks operating out of North Korea, Vietnam, Laos, and Spain. Among the entities sanctioned is Amnokgang Technology Development Company, a North Korean firm accused of managing delegations of overseas workers and conducting illicit procurement to acquire military and commercial technology.
Specific individuals named in the crackdown include Nguyen Quang Viet, CEO of the Vietnam-based Quangvietdnbg International Services Company Limited. Investigators allege Nguyen converted roughly $2.5 million into cryptocurrency for North Korean interests between mid-2023 and mid-2025.
Also targeted were Do Phi Khanh and Hoang Van Nguyen, both accused of acting as proxies for a North Korean nuclear procurement facilitator to open bank accounts and launder illicit proceeds.
In Laos, North Korean national Yun Song Guk was sanctioned for allegedly leading a group of freelance IT workers based in Boten since 2023. These actions follow a similar move in November 2025, when OFAC sanctioned eight individuals and two entities for related money laundering activities.
U.S. government officials have frequently cautioned that North Korea is pivoting more heavily toward cyber operations and remote IT work to secure the hard currency required to sustain its nuclear and ballistic missile programs.
Please make a small donation to the Tampa Free Press to help sustain independent journalism. Your contribution enables us to continue delivering high-quality, local, and national news coverage.
Sign up: Subscribe to our free newsletter for a curated selection of top stories delivered straight to your inbox
