Vidoc Security Lab encountered a backend-engineer applicant who used a deepfake during a coding interview while presenting a credible CV and LinkedIn profile. The company says the incident could be linked to a North Korean hacker group that has used similar fake IT-worker tactics against other companies, but the excerpt does not provide technical evidence for firm attribution. The reported tradecraft centered on polished recruiting profiles, mismatched accents or claimed backgrounds, suspicious video artifacts, and refusal to perform simple live-camera checks. The case matters for DPRK-focused tracking because fake remote IT-worker and interview fraud can create insider access risks, including unauthorized code access or vulnerability insertion after hiring.