What are “laptop farmers” in cybercrime schemes?

“Laptop farmers” are individuals who receive company-issued laptops inside the United States and configure them for remote access so overseas operators can secretly use them while appearing to work domestically.

Why were the US men sentenced?

US prosecutors said the men helped North Korean IT workers infiltrate American companies through fake remote employment arrangements tied to crypto and technology firms.

How did the scheme work?

The operators allegedly used stolen or fake identities to obtain remote jobs at US companies. The laptops were then remotely accessed from overseas through installed remote desktop software.

Why are crypto companies frequently targeted?

Crypto and blockchain firms often provide access to digital assets, sensitive infrastructure and internal systems that can be exploited for cyber theft or intelligence gathering.

Which individuals were sentenced in this case?

Matthew Issac Knoot and Erick Ntekereze Prince were each sentenced to 18 months in prison.

How many companies were reportedly affected?

The US Department of Justice said the operation affected nearly 70 American companies across technology and crypto-related sectors.

Why is North Korea linked to crypto cybercrime?

North Korea has repeatedly been accused of using cyber operations to generate revenue through crypto theft, ransomware and remote employment fraud schemes aimed at bypassing international sanctions.

US sentences ‘laptop farmers’ tied to North Korean crypto scheme

Q: How much money did the scheme reportedly generate?

US authorities said the two men helped generate approximately $1.2 million for North Korea through the remote worker operation.

Written by Liezl GambePublished May. 8 2026Last Updated May. 8 2026

US prosecutors said they have secured multiple convictions against individuals accused of helping North Korean IT workers infiltrate American companies through remote employment schemes linked to crypto and technology firms.

The US Department of Justice said separate courts recently sentenced Matthew Issac Knoot and Erick Ntekereze Prince for assisting North Korean operatives posing as remote US-based employees.

Authorities described the individuals as “laptop farmers,” a term used for people who receive company-issued laptops in the United States before configuring remote access systems allowing overseas workers to control the devices while appearing domestically located.

The Justice Department said the pair helped generate approximately $1.2 million for North Korea while affecting nearly 70 US companies.

Prosecutors said the remote worker schemes frequently targeted technical and engineering roles at crypto and blockchain firms to potentially gain access to sensitive infrastructure, digital assets or internal systems.

Knoot and Prince were each sentenced to 18 months in prison, while courts also ordered financial forfeitures and restitution payments tied to earnings generated through the operation.

The convictions add to a growing number of US prosecutions involving North Korean-linked remote employment schemes, including separate laptop farm operators sentenced earlier this year for helping generate millions of dollars for the North Korean government.

Cybersecurity researchers have previously warned that North Korean operatives increasingly use artificial intelligence tools, stolen identities and remote work infrastructure to infiltrate crypto companies and technology businesses globally.