PCMAG posted a really interested story about how KnowBe4 hired a North Koren Hacker. The story can be found HERE.
Personally, I give credit to KnowBe4 for releasing this story. There are some very interesting lessons learned. Key things are first, KnowBe4 performed background checks and interviewed the person four times. The hacker used a stolen identity to pass the background check and deep fake modified photo for the head shot image. They received a new laptop and immediately loaded it with Malware. If they didn’t aggressively act malicious day 1, they would have likely gained access to the inside network.
To quote KnowBe4, “This case highlights the critical need for more robust vetting processes, continuous security monitoring, and improved coordination between HR, IT, and security teams in protecting against advanced persistent threats”. KnowBe4 mentions the HR team matched the image to the live person during the video conferences and all standard background checks were performed. The hacker used an AI enhanced picture of the stolen identity when required to show images.
The hard lesson learn is AI is changing how attackers are performing impersonating attacks. HR departments need to ramp up how they recruit.