North Korean nationals seeking illicit remote employment have increasingly targeted the healthcare sector, according to a Sept. 30 report from Okta Threat Intelligence.
Here are five things to know:
- Okta found that North Korea’s IT worker scheme spans multiple industries, including healthcare and medical technology.
- The report said North Korean-linked workers applied for roles such as mobile app development, electronic record-keeping platforms and customer service systems at healthcare organizations.
- Investigators tracked more than 130 identities tied to the scheme and more than 6,500 initial job interviews across 5,000 organizations through mid-2025. While most interviews were with technology companies, healthcare consistently appeared among the targeted sectors.
- The findings raise potential compliance risks for U.S. healthcare providers, as employing sanctioned individuals to handle protected health information could lead to regulatory violations.
- Okta noted that while healthcare organizations often scrutinize medical credentials, they may not apply the same level of review to IT roles, leaving gaps in detection.
