Steve Schmidt, the chief safety officer at Amazon, says his staff has recognized and blocked greater than 1,800 makes an attempt by North Korea to safe IT roles on the tech large. He warns that this scheme is turning into extra prevalent throughout the expertise business because the nation-state actor targets the profitable salaries of generative synthetic intelligence and machine studying jobs, and the troves of precious knowledge such employees have entry to.
“A lot of people don’t think about organized efforts by other parties to get people hired into organizations who have interesting data,” says Schmidt, talking at an occasion held by Amazon this week. “It’s actually pretty prolific.”
Schmidt says that in 2025, Amazon has seen a 27% enhance within the variety of North Korean functions on a quarter-over-quarter foundation.
Notable instances all year long that time to the rising subject embrace 4 North Korean nationals being charged for allegedly scheming to get employed as distant IT employees after which steal practically $1 million in cryptocurrency; a marketing campaign to create a faux job-application platform to get employed at main AI corporations; and a girl in Arizona who was sentenced to eight years in jail for her position in a $17 million rip-off to assist North Koreans steal U.S. identities to safe distant IT roles.
These id theft schemes signify an ever-escalating confrontation between nation-state actors like North Korea and main Fortune 500 corporations, as dangerous actors develop new deception strategies and companies reply by bolstering their defenses. The cycle continues and escalates as a result of, for international locations like North Korea, these schemes can generate massive monetary windfalls and entry to proprietary knowledge.
AI is more and more getting used as a software to observe and determine these criminals, but additionally by the criminals themselves for assaults. Final month, Anthropic generated headlines when it disclosed that purported Chinese language operators used that AI startup’s coding software to focus on about 30 organizations.
Schmidt says the North Korean method has modified over time, evolving from creating solely fabricated profiles on-line to buying identities from Individuals with reputable backgrounds. The hackers will then purpose to make use of these credentials to infiltrate an employer.
He says that Amazon has bolstered defenses via a mixture of AI-enabled instruments and human prevention efforts, a course of he says the corporate has refined over the previous two years. AI fashions have been educated to search for suspicious exercise, together with how North Korean operatives might record their contact info. They have a tendency to make use of a plus image on the entrance of a telephone quantity, which most Individuals don’t do, and Amazon has recognized round 200 totally different educational establishments that these IT employees use of their résumés.
These faux IT employees can even record nonexistent corporations of their employment historical past. A few of these faux corporations may very well have a registered enterprise presence in a given state with a human who works for them to “verify” previous employment, however they haven’t any actual operations.
Amazon now conducts extra interviews in particular person and Schmidt says that the corporate’s mandate to convey employees absolutely again within the workplace additionally has some safety advantages. “It is very, very hard to hide behind somebody else’s identity when you have to be in the office,” Schmidt tells Fortune.
Id verification is now required at a number of levels all through the interview course of. And as soon as somebody is employed, Amazon retains a watch on suspicious patterns of laptop utilization and the standard of labor that’s being produced. Schmidt says the dangerous actors produce software program code that’s “markedly lower” in high quality when working within the workplace versus when they’re distant.
He requires IT and human assets departments to extra intently coordinate on hiring. At Amazon, the safety staff has entry to the résumés, LinkedIn feeds, and different knowledge that recruiters use to lure expertise, and AI fashions are used to flag accounts that look suspicious. “It’s actually a lot cheaper for the HR organization if we discover the problem up front,” says Schmidt.
Amazon’s internally developed authentication system known as Halfway; it each verifies an worker’s id and controls entry to their techniques. The corporate depends on what’s often called “Universal 2nd Factor,” which makes use of bodily safety keys, moderately than one-time passwords. Authentication requires a tool that Amazon trusts, with the bodily token and a pin that’s related to that token.
Schmidt says Amazon’s safety staff is leveraging AI in fairly just a few methods, together with rushing up safety evaluation (critiques that historically took hours and may now be accomplished in about 10 minutes); detecting and eradicating faux AI-written critiques on the corporate’s retail web page; and figuring out potential flaws in AI-written software program code. The latter effort known as “autonomous threat analysis,” during which two units of AI brokers compete with one another to search for issues within the code and mitigate them earlier than a product is launched.
As Amazon has embraced agentic AI capabilities, Schmidt says the corporate made an funding in Halfway to construct software program that will enable it to securely determine the agent itself, in addition to the motion it has been licensed to tackle behalf of an individual. AI brokers are like people in that they want boundaries: An AI agent in robotics shouldn’t have entry to the retail division, whereas a customer support agent shouldn’t contact Amazon Net Providers.
“That agent that’s in the middle is not a service, which is the underlying layers of software talking to each other, and it’s not a human, it’s both together” says Schmidt. “We had to make that investment to ensure that we put the right boundaries around the agent.”
John Kell
Ship ideas or solutions to CIO Intelligence right here.
NEWS PACKETS
OpenAI debuts new mannequin amid heightened competitors. ChatGPT proprietor OpenAI just lately debuted a brand new AI mannequin referred to as GPT-5.2, which Fortune reviews beats different current fashions by substantial margins in lots of classes and carried out notably properly on a benchmark of difficult skilled duties together with legislation, accounting, and finance. OpenAI reported that prospects together with authorized AI startup Harvey and communications expertise supplier Zoom discovered that GPT-5.2 demonstrated a “state of the art” capacity to make use of different software program instruments to finish duties and likewise excelled at writing and debugging code. Individually this week, OpenAI additionally launched a brand new flagship image-generation mannequin that is extra exact at modifying and may generate photos at a sooner pace.
Disney indicators a $1 billion licensing cope with OpenAI. Leisure large Disney introduced it might make an fairness funding in OpenAI and permit the AI large’s Sora video mannequin to make use of Disney characters and pictures from its franchises. CEO Bob Iger mentioned that the Disney seen expertise developments, together with AI, as “opportunity, not threat. It’s going to happen regardless, and we’d rather participate in the rather dramatic growth, rather than just watching it happen and essentially being disrupted by it.” Disney can even obtain warrants to purchase further fairness in OpenAI; the leisure firm will leverage the corporate’s expertise to construct new merchandise and instruments, together with for its streaming service Disney+, and deploy ChatGPT for its staff.
CoreWeave and different AI shares are taking a success. The Wall Road Journal reviews on an enormous inventory tumble for data-center operator CoreWeave, with shares dropping $33 billion in worth in simply six weeks. The report attributes the selloff to worries about an AI bubble, strain from a brief vendor, and the corporate’s current failed merger with crypto miner Core Scientific. Shares of Broadcom and Oracle have additionally confronted strain this week; market jitters are intensifying as these corporations spend massively on AI in hopes {that a} massive return on funding might be unlocked later. Fortune reviews that the selloff might in the end be wholesome: The market is promoting off choose shares of corporations which were spending an excessive amount of, however traders stay broadly bullish on the general market, with the S&P 500 index nonetheless up 16% for the 12 months.
Airbnb CIO departs weeks after CTO’s exit. The net home-rental market confirmed that CIO Lucius DiPhillips would depart Airbnb after practically eight years to pursue a brand new profession alternative. DiPhillips, who had served as CIO since 2020, has additionally beforehand held expertise management roles at eBay, PayPal, and Financial institution of America. The transfer comes after Airbnb introduced in November that the corporate’s CTO, Ari Balogh, was departing. Airbnb is anticipated to roll out extra AI updates inside the firm’s app in 2026, Bloomberg reviews.
ADOPTION CURVE
CIOs are sitting nearer to the CEO, a job they more and more covet for themselves. CIOs have captured extra consideration from the C-suite and boards as enterprises throughout all sectors embrace extra generative AI instruments to rework work and enterprise technique. Meaning these technologists are additionally getting extra direct publicity to their CEOs. At present, 65% of CIOs report on to the CEO, an enormous leap from 41% a decade in the past, in line with a current survey carried out by Deloitte.
The consulting agency says that extra direct entry to the chief management staff and an expanded mandate on fast-developing applied sciences can also be fueling loftier profession ambitions. The survey discovered that 67% of CIOs say that they want to pursue a CEO job sooner or later. That’s greater than the charges amongst chief info and safety officers (55%), chief knowledge and analytics officers (42%), and chief expertise officers (41%).
One notable CIO who made this actual leap is Jim Siders, who spent greater than 12 years at software program large Palantir and just lately departed to turn into CEO of Protect Applied sciences Companions, a brand new enterprise centered on IT providers that’s a subsidiary of Thrive Holdings, which was launched in April by OpenAI and Thrive Capital.
Courtesy of Deloitte
JOBS RADAR
Hiring:
– Transdev North America is searching for a CIO, primarily based in Lombard, Illinois. Posted wage vary: $290K-$325K/12 months.
– Flournoy Well being Techniques is searching for a CTO, primarily based in Atlanta. Posted wage vary: $220K-$240K/12 months.
– Angle Well being is searching for a head of IT and cybersecurity, primarily based in New York Metropolis. Posted wage vary: $200K-$300K/12 months.
– AHI Journey is searching for a VP of IT, primarily based within the higher Chicago space. Posted wage vary: $130K-$150K/12 months.
Employed:
– Leidos appointed Theodore “Ted” Tanner Jr. as CTO, who will tackle the position on Jan. 5 to succeed Jim Carlini. Carlini had served within the position since 2019 and beforehand introduced plans to step down. Tanner joins the IT providers supplier from AI modules maker BigBear.ai, the place he served as chief expertise and technique officer. Tanner additionally beforehand labored for Apple and Microsoft.
– Tenable introduced the appointment of Vlad Korsunsky as CTO, reporting to co-CEO Steve Vintz and primarily based within the cybersecurity firm’s Tenable Israel Innovation Heart in Tel Aviv. Korsunsky joins Tenable after greater than a decade at Microsoft, the place he served as the company vice chairman of cloud and enterprise safety.
– eXp Realty named Carrie Lysenko to function CTO of the cloud-based actual property brokerage, which is a subsidiary of eXp World Holdings. Lysenko joins the corporate after most just lately serving as CEO of Canadian actual property brokerage Zoocasa. She additionally spent greater than 14 years at The Climate Community.
– Papa introduced the appointment of Thomas Carlough as CTO, overseeing all product, knowledge, and engineering for the web platform that connects caregiver providers to older adults. Most just lately, Carlough served as CTO of well being group Wider Circle.
– Intel 471 promoted Steve Micallef to the CTO position and the cybersecurity firm’s govt staff. Micallef has labored for the corporate since 2022 and has greater than 25 years of expertise in cybersecurity and menace intelligence, together with at UBS, Google, and the corporate he based, SpiderFood, which was later acquired by Intel 471.
– MedSpeed appointed Dhiraj Patkar as chief product and expertise officer. Patkar joins the well being care same-day logistics supplier after beforehand serving as senior vice chairman at consulting agency AVIA Well being. Patkar additionally cofounded two well being care corporations, Medtelligent and Wishbone Membership.
– PlanHub promoted Mourad Zerroug to the position of CTO, main expertise, engineering, knowledge, AI, and product improvement. Zerroug initially joined the business construction-focused software program supplier in January as VP of engineering. Beforehand, Zerroug served as CTO at occasion advertising expertise firm Splash and as a VP at actual property software program developer Lone Wolf Applied sciences.
FORTUNE AIQ: THE YEAR IN AI—AND WHAT’S AHEAD
Companies took massive steps ahead on the AI journey in 2025, from hiring Chief AI Officers to experimenting with AI brokers. The teachings realized—each good and dangerous–mixed with the expertise’s newest improvements will make 2026 one other decisive 12 months. Discover all of Fortune AIQ, and skim the most recent playbook under:
–2025 was the 12 months of agentic AI. How did we do?
–AI coding instruments exploded in 2025. The primary safety exploits present what might go improper.
–The large AI New 12 months’s decision for companies in 2026: ROI.
