PCMag editors select and review products independently. If you buy through affiliate links, we may earn commissions, which help support our testing.

PCMag UK

Did You Accidentally Friend a North Korean Hacker on Facebook?

North Korean hackers have been creating fake personal Facebook accounts and friending random people, so be careful not to accept requests from randos.

Michael Kan
 & Michael Kan Principal Reporter

Our team tests, rates, and reviews more than 1,500 products each year to help you make better buying decisions and get more from technology.

Our Expert
LOOK INSIDE PC LABS HOW WE TEST
65 EXPERTS
43 YEARS
41,500+ REVIEWS

North Korean hackers have been preying on potential targets using Facebook, but the company has thwarted at least some of their activities.

SecurityWatchLast week, Facebook joined Microsoft and others in the security community to disrupt a covert campaign, the White House said on Tuesday. The scheme involved creating fake personal Facebook accounts that attempted to build relationships with potential targets and coordinate other activities.

In a statement, Facebook confirmed its involvement and said the Lazarus Group, a hacking collective that many security experts suspect works for North Korea, was behind the fake accounts. "We also notified people who may have been in contact with these accounts and gave suggestions to enhance their account security," Facebook said.

It isn't clear why North Korean hackers targeted Facebook users. However, social media is often ripe with people's personal information, including email addresses, phone numbers and location data. In this case, North Korea may have sought to trick their victims into installing malware, which could then be used to take over their computers.

Microsoft, meanwhile, has disabled accounts linked with the attack, and bolstered its antivirus software to prevent reinfections.

Recommended by Our Editors

Would You Pay to Use Facebook? Meta 'Plus' Subscriptions Rolling Out Now
Would You Pay to Use Facebook? Meta 'Plus' Subscriptions Rolling Out Now
Meta Joins Snap, TikTok, YouTube in Settling Social Media Addiction Case
Meta Joins Snap, TikTok, YouTube in Settling Social Media Addiction Case
Meta Launches Forum, a New Reddit-Like App for Facebook Groups
Meta Launches Forum, a New Reddit-Like App for Facebook Groups

"Microsoft acted before the attack in ways that spared many US targets," President Trump's homeland security adviser, Tom Bossert, said at a Tuesday briefing.

The news comes as the US on Monday publicly blamed North Korea for launching the WannaCry ransomware attack that infected over 200,000 computers in May. Microsoft said it reached the same conclusion.

"If the rising tide of nation-state attacks on civilians is to be stopped, governments must be prepared to call out the countries that launch them," Microsoft President Brad Smith said in a statement.

Little is known about the Lazarus Group, but the elite hackers may have been involved in the Sony Pictures breach of 2014, as well as several attacks on banks.

For internet users, it's a good idea not to accept friend requests on Facebook or LinkedIn from those you don't know. Even legitimate-looking accounts can be fake. Placing too much personal data on your social media page can also leave you vulnerable to hacking schemes.

About Our Expert

Michael Kan

Michael Kan

Principal Reporter

My Experience

I've been a journalist for over 15 years. I got my start as a schools and cities reporter in Kansas City and joined PCMag in 2017, where I cover satellite internet services, cybersecurity, PC hardware, and more. I'm currently based in San Francisco, but previously spent over five years in China, covering the country's technology sector.

Since 2020, I've covered the launch and explosive growth of SpaceX's Starlink satellite internet service, writing 600+ stories on availability and feature launches, but also the regulatory battles over the expansion of satellite constellations, fights with rival providers like AST SpaceMobile and Amazon, and the effort to expand into satellite-based mobile service. I've combed through FCC filings for the latest news and driven to remote corners of California to test Starlink's cellular service.

I also cover cyber threats, from ransomware gangs to the emergence of AI-based malware. In 2024 and 2025, the FTC forced Avast to pay consumers $16.5 million for secretly harvesting and selling their personal information to third-party clients, as revealed in my joint investigation with Motherboard.

I also cover the PC graphics card market. Pandemic-era shortages led me to camp out in front of a Best Buy to get an RTX 3000. I'm now following how the AI-driven memory shortage is impacting the entire consumer electronics market. I'm always eager to learn more, so please jump in the comments with feedback and send me tips.

The Best Tech I've Had:

  • My first video game console: a Nintendo Famicom
  • I loved my Sega Saturn despite PlayStation's popularity.
  • The iPod Video I received as a gift in college
  • Xbox 360 FTW
  • The Galaxy Nexus was the first smartphone I was proud to own.
  • The PC desktop I built in 2013, which still works to this day.

Read the latest from Michael Kan

Read full bio