In the noble tradition of subverting expectations, North Korean hackers have recently demonstrated their unparalleled ability to play the role of both hiring manager and job applicant on the internet’s least secure job board: LinkedIn. These digital matchmakers, masquerading as recruiters, have embraced the startup culture more fervently than a millennial at a tech conference.

While the rest of the world is still figuring out how to use their company’s cloud solutions without accidentally deleting their entire database, UNC4899 is already onboarding new ‘employees’ through Telegram, the beloved app for those who like to keep their chats as secure as a bank vault with a broken lock. Their rigorous selection process involves convincing hopeful candidates to run malware-laden Docker containers—a hands-on interview technique that uniquely benefits the North Korean economy, if no one else.

Meanwhile, HR departments everywhere are taking notes, wondering why their own job posts don’t include promises of freelance software development opportunities backed by the risk of international cybercrime. With millions in crypto stolen as a result, these hackers are living the dream of every recruiter: getting rich off desperate job seekers, one phishing scam at a time.