Arizona Woman Sentenced for Helping North Korean Hackers

Christina Marie Chapman, a 50-year-old Arizona woman, received a 102-month prison sentence for orchestrating a sophisticated fraud scheme that helped North Korean IT workers infiltrate over 300 U.S. companies while posing as American citizens and residents.

The operation generated more than $17 million in illicit revenue for both Chapman and the Democratic People’s Republic of Korea.

Chapman pleaded guilty in February to conspiracy to commit wire fraud, aggravated identity theft, and conspiracy to launder monetary instruments.

U.S. District Court Judge Randolph D. Moss also ordered three years of supervised release, forfeiture of $284,555.92, and a judgment payment of $176,850.

The scheme represents one of the largest North Korean IT worker fraud cases prosecuted by the Department of Justice, involving 68 stolen American identities and defrauding 309 U.S. businesses plus two international companies.

Among the targeted organizations were Fortune 500 corporations, a major television network, Silicon Valley technology companies, aerospace manufacturers, automotive companies, luxury retailers, and media entertainment firms.

The North Korean workers even attempted to infiltrate U.S. government agencies, though these efforts were largely unsuccessful.

Sophisticated “Laptop Farm” Operation

Chapman operated what investigators termed a “laptop farm” from her Litchfield Park, Arizona home, where she received and hosted computers from U.S. companies.

This setup deceived employers into believing work was being performed domestically when it was actually conducted by North Korean operatives overseas.

The operation involved shipping 49 laptops and devices to international locations, including multiple shipments to a Chinese city bordering North Korea.

When authorities executed a search warrant in October 2023, they seized more than 90 laptops from Chapman’s residence. She had organized and labeled each device with notes identifying the associated company and stolen identity.

Chapman facilitated the scheme by receiving forged payroll checks and direct deposits into her U.S. financial accounts, then transferring proceeds overseas.

Much of the millions generated was falsely reported to the IRS and Social Security Administration using stolen American identities.

Ongoing Threats

Acting Assistant Attorney General Matthew R. Galeotti emphasized the severity of Chapman’s actions, stating she “perpetrated a years-long scheme that resulted in millions of dollars raised for the DPRK regime, exploited more than 300 American companies and government agencies, and stole dozens of identities of American citizens.”

U.S. Attorney Jeanine Ferris Pirro warned that North Korea represents “an enemy within,” noting that if major banks and Fortune 500 companies were victimized, any corporation could be at risk.

She stressed that companies failing to verify virtual employees pose security risks for all organizations.

The FBI’s Counterintelligence Division highlighted how North Korea has deployed thousands of skilled IT workers worldwide using false identities to circumvent U.S. hiring controls.

In coordination with Chapman’s sentencing, the FBI issued updated guidance for HR professionals on detecting North Korean IT workers.

This case underscores the ongoing cybersecurity threat posed by North Korean operatives and the critical importance of robust employee verification processes, particularly for remote workers in an increasingly digital workplace environment.

Find this Story Interesting! Follow us on LinkedIn and X to Get More Instant Updates.