Search continues for missing University of Pittsburgh student who vanished during spring break in Dominican Republic
The 20-year-old junior was last seen in the early morning hours of March 6 entering the beach of the RIU hotel she was staying at in Punta Cana, according to Dominican Republic National Police.
Konanki and five friends from college arrived in the Dominican Republic on March 3 and were staying at the same hotel, police said.
National Police learned she was missing Friday morning and an "exhaustive search has been initiated by sea, air and land" using drones, helicopters, divers, boats and canine units.
Police believe she disappeared around 4:15 a.m. after she and her friends were captured on video surveillance entering the beach area of the hotel. Her friends returned to the hotel but she did not.
The public prosecutor's office was interviewing her friends. Police also said they interviewed a young man who was at the beach around that time and are trying to corroborate his version of events.
RIU Hotels said in a statement Sunday it was "deeply concerned about the disappearance of one of our guests."
"From the moment her absence was reported, we have been working closely with the local authorities, including the police and the navy, to conduct a thorough search," the hotel said. "We would like to express our deepest sympathy to the family and friends during this incredibly difficult time … we are fully committed to doing everything in our power to assist in this situation."
The hotel said it is supporting authorities in the search, and established an internal communication channel so that employees across the chain's five Punta Cana hotels can share information with hotel leaders and authorities.
La Altagracia Civil Defense, the local Dominican Republic emergency operations agency, shared photos of multiple agencies searching on the beach over the weekend.
Konanki's family resides in Virginia. The Loudoun County Sheriff's Office in Virginia was contacted to report her disappearance, according to Sheriff Michael Chapman.
He noted that Konanki's parents are traveling to Punta Cana. Konanki's family declined to comment on the search for her.
He said authorities are combing through security camera footage for signs of her and cellphone data.
"We have certainly experts here within the U.S. that will look into all aspects of her phone, her friends' phones, anybody that she might have been with, to see exactly what may have happened there," Chapman said.
Chapman said his office is working with authorities in the Dominican Republic, as well as the U.S. State Department. The FBI said Dominican authorities are leading the investigation, but that the bureau "stands ready to assist our international partners with any requests for assistance."
Konanki's five female friends from college were scheduled to return to the U.S. on Friday, but stayed back to aid in the search for her, sheriff's office spokesperson Thomas Julia said.
Authorities said it's not clear if her disappearance is accidental or if foul play was involved.
"Right now, it runs the gamut from something accidental to foul play," Julia told NBC News. "It is all at this point under consideration. Nothing's been ruled out."
The University of Pittsburgh said it was in contact with Konanki's family and offering support in the investigation. The Indian Embassy in the Dominican Republic is also helping in the investigation as Konanki is also a citizen of India, Chapman said.
Konanki is a biology major at the University of Pittsburgh and is part of the South Asian fusion a cappella group, Avaaz, according to a post on the group's social media.
Virginia Rep. Suhas Subramanyam said he's been in touch with Konanki's family and friends to assist with the search.
"I am actively working with federal and international agencies to leverage every possible resource available to bring her home safely," he wrote on X Monday. "We are all praying for her safe and immediate return home."
This article was originally published on NBCNews.com
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
USA Today
14 hours ago
- USA Today
13 charged with operating $5M scheme that targeted older adults across US
The charges are the result of a two-year investigation between U.S. and Dominican authorities. The stolen money funded lavish lifestyles abroad. Thirteen individuals have been charged in connection with operating scam call centers that raked in over $5 million by defrauding 400 older adults across the nation, federal prosecutors said. The call centers based in the Dominican Republic targeted older adults in the United States, the U.S. Attorney's Office, District of Massachusetts, announced in news released on Aug. 12. Scammers obtained the money by tricking victims into believing that their grandchildren or close family members were in trouble and desperately needed money, a scheme the FBI calls a grandparent scam. The average age of their hundreds of victims was 84, prosecutors said. "Their goal," according to Leah B. Foley, the U.S. Attorney for Massachusetts, "was to trick our parents, grandparents, neighbors, and friends into handing over their life savings on false pretenses. And they succeeded." Of the 13 people charged in federal court in Massachusetts, nine are in custody, according to the Department of Justice. Two of the suspected scammers are at large in the United States and two in the Dominican Republic, Christina Sterling, a spokesperson for the U.S. Attorney's Office, said at a news conference on Aug. 12. Charges against the 13 include conspiracy to commit mail fraud and wire fraud, and money laundering conspiracy, prosecutors said. The suspected scammers face potentially decades in prison if found guilty. At least one has already pleaded guilty. 'Ringleader' in custody In addition to the FBI, the Justice Department's Office of International Affairs participated in the investigation, as well as Dominican agencies, including the Dominican National Police. Dominican authorities said the arrests were the result of a two-year investigation. Among the nine in custody is Oscar Manuel Castanos Garcia, the chief operator of the call centers. Sterling, the U.S. Attorney's Office spokesperson, described him as a "ringleader" and said he was arrested on Aug. 12 in the Dominican Republic. Castanos Garcia, 33, is suspected of directing scammers to follow a script in their calls that would lead the victim to believe that their loved one was making a call from jail after a car accident and needed money to post bail, the U.S. Attorney's Office said. He operated call centers out of residential homes in Santiago de los Caballeros and Puerto Plata. "I was granted a 5-minute phone call, and I called you because I know you can help me," a script shared by the Department of Justice reads. "Please, promise that you will keep this between us until I get out, I am ashamed about this." The script directed callers to hang up by telling the victim, "I love you." Callers obtained information about their victims through the dark web, according to a federal affidavit. Castanos Garcia and a few others were arrested in the Dominican Republic and are expected to be extradited. Money went towards 'luxury purchases' The grandparent fraud schemes depend on several operators playing key roles, from "openers" who make the initial call to older adults to "runners" who collect the cash from victims and launder it back to the Dominican Republic, according to Justice Department officials. Operators kept a "scoreboard" at call centers showing how much money each "opener" and "closer" pairing made, prosecutors said. The closer is responsible for making the second call to victims. In the Massachusetts case, operators posed as public defenders who told victims how much "bail money" they had to pay. Sometimes, call center operators would call back multiple times to demand greater sums of money, making claims including that a baby had been lost in the car accident, Justice Department officials said. The money furnished lavish lifestyles for call center operators. Castanos Garcia spent the money on "upgrades to his home and luxury purchases," including a boat, court documents said. Photographs included in a federal affidavit show Castanos Garcia sitting in a hot tub aboard a yacht. Growing scheme The grandparent scam case in Massachusetts, which included at least 50 victims, is the latest in the growing field of elder fraud. FBI officials announced in June that older adults across the United States reported nearly $4.89 billion in losses due to fraud schemes, including grandparent scams. The sum represents a 43% increase in losses from 2023, according to the FBI. According to data from the FBI's Internet Crime Complaint Center, there were 147,127 complaints of elder fraud in 2024, a 46% increase from 2024, the FBI said. Among recent schemes, a federal grand jury indicted a man from the Dominican Republic in March in connection with a scheme to defraud five people of $50,000, USA TODAY previously reported. Luis Alfonso Bisono Rodriguez, a citizen of the Caribbean nation living in Cleveland, played all the parts of the scam from opener to runner. He pleaded not guilty in July. "Elder fraud is a growing problem and a shameful crime," Kimberly Milka, acting special agent in charge of the FBI's Boston Division, said in a release about elder fraud. "Not only does it rob an already vulnerable population of their sense of security, but it leaves them with devastating financial losses." Older adults are targeted because they are often seen as more trusting and also less likely to report being scammed, federal officials said. People can report elder fraud scams by emailing calling 1-800-CALL-FBI (1-800-225-5324), or online at the FBI's IC3 Elder Fraud Complaint Center.
New York Post
05-08-2025
- New York Post
Chinese exchange student, 13, charged with murdering 14-year-old
A 13-year-old Chinese exchange student has been charged with murder over the alleged stabbing death of a 14-year-old girl at a home in Newcastle, Australia. The 14-year-old, also an exchange student from China, was found with a single wound to her torso at Euston Close, Edgeworth, about 10:20 p.m. on Monday, after police were called to reports of a stabbing. She was treated by paramedics at the scene before being rushed to hospital in a critical condition. The younger girl will appear in a Children's court on Wednesday on the murder charge. Superintendent Tracy Chapman, commander of the Lake Macquarie Police District, said both girls were from China, having traveled to Australia as part of a program where they stayed with local residents who acted as hosts. 3 The stabbing victim was also an exchange student from China. 9News They were attending a local school and visiting locations around the Hunter area. 'They arrived in Australia eight days ago and were expected to depart Australia on the 16th of August,' Supt Chapman said. 'NSW Police continue to work with the program facilitators to ensure that all of the appropriate processes and notifications are being undertaken.' 3 The victim was treated by paramedics at the scene before being rushed to hospital before dying. 9News The two young girls were staying with the same hosts, a man and a woman. They had their own bedrooms. 'All parties had retired to their rooms for the evening when one of the hosts heard a commotion of some sort, and when she went to investigate, she located the 14-year-old.' Police are not aware of any relationship between the two girls and are investigating whether or not there was any history between them. 3 The 13-year-old will appear in a Children's court on Wednesday on the murder charge. ABC News (Australia) Superintendent Chapman said language barriers were a factor and they are working with the consulate as the girls were not Australian residents so there were 'obvious complications and complexities with that, which is why it's taken us some time to work through'. Police have taken possession of a kitchen knife.
CNN
05-08-2025
- CNN
This may look like any other profile photo you'd see on a
In recent years, thousands of North Korean IT workers have used stolen and made-up US identities to pose as Western developers, engineers, and tech consultants to funnel hundreds of millions of dollars a year to Pyongyang's military programs. 'They're everywhere, all over the Fortune 500,' said Michael Barnhart, Principal i3 Insider Risk Investigator at cybersecurity firm DTEX. The North Koreans rely on help from open-source AI and even live face-masking software to hide their true identities and locations during video calls from countries such as China, Laos and Russia. But their ability to embed themselves in corporate America doesn't rely on trickery alone. It requires help from inside the United States. How the operation works LaptopFacilitatorRemote accessRemoteworkersLaptopfarmUScompaniesNorth KoreanIT WorkerUScompany Facilitators in the US help North Korean operatives steal identities and access American financial systems. US companies send them laptops that the North Koreans use to log into corporate networks. Facilitators with many laptops are said to be running 'laptop farms.' Experts say it's difficult to estimate the total number of workers as many of them run multiple identities and work several jobs at the same time. One American woman, Christina Marie Chapman, was last month sentenced to eight-and-a-half years in prison for helping these operatives land jobs at more than 300 companies, generating over $17 million for Kim's heavily sanctioned regime. A prolific TikToker, Chapman charted her remarkable rise in public videos from poverty to international travel, courtesy of a new job in 'a computer business,' that US investigators used to build their case. Chapman is not the only US resident to have participated in the scheme. Recently unsealed federal indictments show other US-based facilitators played a crucial role in the operation – laundering paychecks, stealing identities and running 'laptop farms' that allowed North Korean workers to appear as if they were physically present inside the country. The stealthy operation has allowed North Korea, formally known as the Democratic People's Republic of Korea (DPRK), to circumvent international sanctions, exploit remote hiring practices, and quietly generate hundreds of millions of dollars annually, according to the US Department of Justice – often without employers ever realizing they've hired a North Korean operative. This puts them at risk of violating US sanctions which bar doing business with North Korean individuals or organizations. 'If you take away looking at them as a government and start thinking of them more as kind of a mafia, everything falls into place,' said Barnhart. The DPRK Foreign Ministry addressed the issue in July after the US offered a reward of up to $5 million for information on several North Korean nationals over the alleged IT worker scheme. Rejecting the allegations as an 'absurd smear campaign,' the ministry accused the US of 'fabricating groundless cyber drama.' Drawing on exclusive data sourced from North Korean computers, court records, and interviews with cybersecurity experts and US officials, a CNN investigation reveals the full scope of this scheme – showing how North Korea has turned remote work culture into an effective tool for generating foreign currency and funding its weapons programs, according to a US assessment, putting national security at risk. North Korea showcases military hardware at a parade in Pyongyang in February 2023. Korean Central TV Kim Jong Un's remote workforce Unlike North Korea's more high-profile cyber operations – like billion-dollar crypto thefts or ransomware campaigns – the IT worker scheme is a state-sponsored effort that seeks to place North Korean operatives in Western companies, not as saboteurs, but as employees, experts say. Evolving out of the North Korean scams of the 90s, like fake $100 bills under late leader Kim Jong Il, his son and successor has taken the scam operation online. 'Kim Jong Un is a millennial, and so he has gravitated toward technology a lot more than his father did,' said Barnhart. 'The IT workers are a very large force that they are wanting to continue to beef up.' Barnhart belongs to a group of tight-knit internet sleuths and cybersecurity professionals leading the charge in hunting down North Korean IT workers. For many of them it's more than just a job – Barnhart has a tattoo for every DPRK cyber unit he has busted. North Korean leader Kim Jong Un gives field guidance at the Sci-Tech Complex, in this undated photo released by North Korea's Korean Central News Agency (KCNA) in Pyongyang October 28, 2015. KCNA/Reuters With antiquated technology and little access to unrestricted internet within North Korea, most of these operations are run from abroad. Southeast Asia, and parts of China and Russia near the North Korean border are among the preferred staging areas thanks to their proximity and friendly relations with the regime, according to US prosecutors and cybersecurity experts. Fake resumes and rehearsed lines powered by AI Exclusive datasets, including browser histories and ChatGPT searches from over a dozen North Korean computers, obtained by researchers through open-source analysis and shared with CNN reveal how they engage AI to create job-seeking personas. The datasets show the IT workers looking up LinkedIn and other job-seeking platforms thousands of times, in a matter of months, with some profiles applying for dozens of jobs. Records of their browser histories also confirm what can be seen in their profiles and resumes – consistent use of AI faceswap software, VPNs, remote working software and a heavy reliance on ChatGPT and Google Translate. These operatives are not just using AI to write code or automate tasks – they're using it to fabricate identities, conduct interviews, mimic cultural fluency, and automate applications to apply for jobs en masse. Generic nameCommonly used past experience Many of the fake profiles use common Western names like Paul, Jeremy and Joe, and list previous work experience at major US companies and degrees from prestigious universities. They also alter stock photos using AI to generate fake headshots. These resumes can be enough to secure job interviews, but in video calls they look nothing like their profile photos. On camera they stumble through rehearsed lines about career goals and work ethic, experts and recruiters told CNN. In some cases, they use AI to help them answer the interviewers' questions in real time, or to alter their faces and hide their identity. 'AI is very important to them,' said Barnhart. 'It helps out everything else they're doing.' Outside the professional sphere, AI is also a cultural crutch – helping North Korean workers adapt to American customs and office small talk. ChatGPT records connected to North Korean computers show them asking for New Year's resolutions, guidance on Thanksgiving greetings, and explanations of American football rules. The North Koreans were early adopters of AI tools such as ChatGPT, according to Evan Gordenker, Consulting Director of Unit 42, the threat intelligence arm of cybersecurity firm Palo Alto Networks. He said they were such prolific users of early open-source AI models that they made significant contributions to training and developing the AI we use today. 'Just ask them about who they are and they fall apart' Once you've learned how to spot a North Korean on a job-seeking site, it's hard to not see them everywhere, but the sheer number of automated applications they submit can inundate companies that often outsource their recruiting. Human risk management company KnowBe4 estimates they've received at least 100 applications from suspected North Korean IT workers in the past year. And last summer, they inadvertently hired one. The company needed a software engineer for its internal IT AI team and posted a job advertisement on the company's website as well as external platforms. After going through the usual recruitment process, they hired a person and mailed them their work laptop. As soon as the laptop was received on the other end, it began downloading malware. Brian Jack, KnowBe4's chief information security officer, suspects an American facilitator set off internal alarms by downloading remote working software. The company immediately terminated the new employee and asked for the return of the laptop. It came back in its original packaging with one key addition – a post-it note with the word 'KnowBe4' stuck on it, which Jack said indicates it may have come from a laptop farm. North Korean IT workers inside an office at an undisclosed location. US Department of Justice Since that day, Jack said he's been tasked with making sure a North Korean never slips through the cracks again, and KnowBe4 is now known as one of the leading companies in tracking DPRK workers. Rather than choosing to expose suspected North Korean applicants by asking them about Kim Jong Un or the DPRK regime, Jack prefers a more subtle approach – asking them about their favorite restaurants and hobbies. 'Just ask them about who they are and they fall apart,' Jack said. Most North Koreans' lives are heavily regulated by the state, with no connection to the outside world under the Kim family rule. The North Korean IT workers certainly enjoy a degree of freedom and privilege compared to their compatriots back home, but experts say it's hard to discern how closely they are being monitored, or if their families are being used as leverage. Photos shared by DTEX of a North Korean IT worker office show a CCTV camera looking over a small room, with bare, white walls, where a handful of workers are using computers at cluttered desks. A North Korean tech worker poses inside an office. DTEX There's a watercooler in the corner, and what appears to be laundry drying on a rack. 'There are North Korean victims in this, too,' said Jack. 'People don't get to choose where they're born, so they just got to make the best of what they're doing.' But to make this scheme work, the North Koreans needed help – from within the US. Rags to riches To her 100,000 TikTok followers, Chapman seemed to be a typical suburban, middle-aged American. She shared healthy eating tips in selfie videos posted online. Off camera, she was engaged in covert activity that could have seen her jailed for life. According to a 2024 indictment, Chapman became entangled in the IT worker scheme around October 2020, just as the Covid-19 pandemic was sweeping the US, and companies were quickly transitioning to remote work. In a LinkedIn message, Chapman was approached by someone asking her to 'be the US face' of a company and assist in helping remote IT workers secure jobs in the US, despite having no experience in the tech industry herself. Around that time Chapman had been posting about her financial struggles on TikTok. Shortly after, her North Korean contacts began applying to US companies and government agencies, submitting false information from Chapman to the Department of Homeland Security as proof of employment eligibility, according to the indictment. Simultaneously, Chapman sent false information to verify these workers' identities to the companies and, once the North Koreans had secured jobs, received their company-issued laptops. Using login details supplied by their new employers, Chapman installed remote working software on the laptops, allowing the North Koreans to access them from outside the US. By early 2023, Chapman's TikTok videos showed a very different life. Work was picking up. @bestlifethrift/TikTok No longer was she crying and begging for handouts. Now living in a 2,000 sq. ft. home in Litchfield Park, Arizona, with four bedrooms and two bathrooms, Chapman posted videos of her chihuahuas playing in the backyard. She began posting about early starts, her work life and clients. 'I start at 5:30, go straight to my office which is the next door away from my bedroom. Then I start taking care of my clients. Computer business. It's now almost noon, and I'm just now getting to eat,' she says, biting into a piece of watermelon. A message exchange from November 2022 Chapman and 'AT,' a remote North Korean IT worker, offers a revealing look at her working day. At one point, Chapman was even asked to join a Microsoft Teams meeting between AT and their employer to help resolve technical issues. Chapman initially expressed concern about having to join the meeting, but was able to suggest an explanation AT could use. Chapman also shipped dozens of work laptops to Liaoning – a province of China that borders North Korea, according to the DOJ indictment. Images obtained and geolocated by CNN showed workers living relatively freely in Liaoning, as well as Laos, dining at restaurants, singing karaoke and chartering yachts. Photos published by the DOJ show what appears to be Chapman's office in 2023. Rows of labeled laptops sit on open shelves in a small room that federal investigators say she used to perpetrate a "staggering fraud on a multitude of industries." At one point, Chapman handled as many as 90 laptops for the DPRK IT workers, the DOJ said. Among the companies targeted was the shoe giant Nike, which unwittingly paid more than $75,000 to a North Korean employee and subsequently conducted a review to confirm there was no data breach. Computers and other electronic equipment inside the laptop farm at Chapman's home. United States District Court for the District of Columbia Chapman attached notes to identify the companies and identities associated with each device. United States District Court for the District of Columbia Of the 68 stolen identities that Chapman and her group of North Korea IT workers used, CNN was able to trace one identity with computer data provided by Palo Alto Network's Unit 42. "Breeyan Cornelius' was a stolen identity used by several North Korean IT workers, according to Gordenker, Consulting Director at Unit 42. He told CNN the real Cornelius was a bus driver living in California. CNN reached out to Cornelius but did not receive a response. The North Korean worker behind the fictitious 'Breeyan Cornelius' profile. Unit 42, Palo Alto Networks CNN reviewed computer data belonging to the North Koreans operating under the name 'Breeyan Cornelius' and found dozens of IT-related job applications and searches at American companies. In some cases, companies replied and even offered job interviews to the North Korean. In a fake resume, 'Breeyan Cornelius' claimed to be a 'Well-qualified Full Stack Developer familiar with wide range of programming utilities and languages.' The resume also claimed he graduated from The University of Tennessee at Chattanooga with a Bachelor of Science in Computer Science in 2014. Under work history, the profile also claimed previous employment at Bank of America and German pharmaceutical giant Bayer. 'We understand he operates in Liaoning,' Gordenker said, referring to the Chinese province that shares a lengthy border with North Korea. A few years into her new job, Chapman was enjoying the new income stream, travelling to Fukuoka and Tokyo to watch – and meet – a Japanese boyband. Videos from the trip show her marveling at the 'chic' lobby, touring her 'adorable' hotel room and gushing about all the new Japanese foods she'd been trying. Text messages from around the same time show her growing nervous about handling federal documents, according to the indictment. 'I can go to FEDERAL PRISON for falsifying federal documents,' she said in one message in August 2023, to a group that included several co-conspirator overseas IT workers. Shortly after, her life began to unravel. In late October 2023, the FBI executed a search warrant at her home in Litchfield Park. Photo of Chapman from the search warrant. Federal Bureau of Investigation Photo of Chapman's home from the search warrant. Federal Bureau of Investigation By March 2024, Chapman posted a TikTok video describing her struggles: 'I need help and I'm really bad at asking,' she said. 'I haven't worked since the end of October, and that's not by choice, I lost my job and I've gone through all of my savings.' She was arrested in May 2024, and legal proceedings began. By August, the toll was evident. She posted another plea on TikTok: 'I have been struggling quite a bit financially, and I did lose my house, I have to be out by tomorrow morning,' she said. 'If anyone is willing, five, 10 dollars.' Around this time, she began selling products on various websites, including artwork, books, custom poems, and 'credit fixing assistance.' In February 2025, Chapman ended her legal troubles by waiving her right to a jury trial and pleading guilty to conspiracy to commit wire fraud, aggravated identity theft, and conspiracy to launder monetary instruments. The DOJ said she claimed she wasn't aware she was working for the North Koreans, but Acting Assistant Attorney General of the Criminal Division Matthew Galeotti told CNN that that was 'irrelevant.' 'She knew that she was working for individuals abroad. She knew that they were using false identities. She knew that she was forging documents for her bank accounts. She knew that some of the addresses that she was sending hardware to were on the border of China and North Korea,' he said. 'The safety of our nation is at issue' In late June, the DOJ conducted sweeping raids and searches at 29 known or suspected laptop farms across 16 states, seizing around 200 laptops. With all North Korean workers located outside the US, in countries without extradition treaties with the US, these raids are one of the few tangible ways authorities can disrupt the scheme, Galeotti said. 'You will be prosecuted to the fullest extent of the law. The defendant in this case [Chapman] made perhaps just north of $170,000. It's not worth it,' he warned. Chapman arrived at her sentencing hearing at a US District Court in Washington DC on July 24 wearing dark glasses and accompanied by a camera crew. Inside the court, public defender Alexis Gardner argued for the lowest possible sentence. 'She's a pawn in this whole scheme,' Gardner told the court. Speaking through tears, Chapman told the court she began running the laptop farm because her mother was ill at the time. She expressed remorse for the harm she had caused people whose identities were stolen and used by the North Koreans. Christina Chapman cries outside a US District Court in Washington DC on the day of her sentencing. CNN 'The fact that I was part of something that caused so much damage to somebody,' Chapman said, sobbing. 'I really hate myself because of that.' Judge Randolph Moss acknowledged she seemed 'genuinely remorseful' but handed down a sentence of 102 months in prison and 36 months of supervised release. 'The safety of our nation is at issue,' he said. US authorities have vowed to track down other American citizens knowingly or unknowingly helping the Kim regime evade international sanctions, offering millions of dollars in rewards in exchange for information. US officials said it's not just money the North Koreans are after – they warn the scheme is evolving, and that as operatives gain access to sensitive roles or become exposed, they may turn malicious and launch malware or ransomware attacks. In a press briefing after Chapman's sentencing, US Attorney for the District of Columbia Jeanine Ferris Pirro sent a direct message to corporate America: 'This is a code red.' 'Your tech sectors are being infiltrated by North Korea. And when big companies are lax and they're not doing their due diligence, they are putting America's security at risk,' she said. Experts say the scheme is too big to take down, powered by a regime with no shortage of compliant workers, aided by US facilitators recorded in every state except Hawaii. 'For everyone that we do catch and for every laptop farm that the FBI raids, it is an element of whack-a-mole,' said Gordenker, noting that the alias Breeyan Cornelius is still active and was last seen applying for a job at a large insurance company in May 2025. 'There is no silver bullet,' Gordenker said. 'This is an inherent risk in doing business... you run the risk of hiring a North Korean.'
