Nuxt HN | How does a \"you interview for US company, we do the work\" scam work?

How does a "you interview for US company, we do the work" scam work?

Got this scam email about an opportunity to earn passive income by acting as the front for an employment fraud scheme.

How does the scammer benefit from this operation?

I can think of 2 ways:

- Personal / private data mining, but this seems quite work intensive for that purpose - Actually going through with the whole scam and disappearing after first salary payments come through

Any other ideas? Anyone have experience or insight about this?

---

Full email below:

"Hi <name>, I hope you’re doing well.

My name is <sender>, and I’ve been a software developer for over 7 years — mainly full stack, with a strong focus on frontend. I’m reaching out because I’m looking for someone to collaborate with, and I think you're the best one whom I'm looking for.

I used to partner with my friend Jim, and we worked really well together. Sadly, he was diagnosed with cancer about a month ago, and he advised me to find someone new to team up with. That’s why I wanted to talk to you.

Here’s the idea: I’ll handle sending proposals to companies, and you would take care of the interviews with recruiters. My English isn’t strong enough for U.S. interviews, so I’m looking for someone who is confident in English and also has strong technical knowledge. If we land a position, you’d receive a share of the monthly salary, while I would take care of the actual development work.

My initial suggestion is a 50/50 split of the salary after tax. For example, if a job pays $10K per month and taxes are 30% ($3K), the remaining $7K would be split evenly — $3.5K each.

I will manage all the proposals and keep you informed about interview schedules. If things work out and we join a team, I’ll handle the project development. Then you'll get profit every month without any work.

If this sounds interesting to you, please let me know — I’d really like the chance to work together.

Thank you, Best regards, <sender>"

19 points | by marttilaine 5 hours ago

Recently my friend was approached by a Telugu broker stating that he would pay 10k for a part time job ... My friend agreed to a tech stack and he was connected with one of his US clients and he started sharing his screen and gave him his entire sprint's work. There are thousands of such [Non-resident Indians] especially from Andhra, Telangana going to USA not learning anything about industry, these people have no coding knowledge, can't even explain their work properly to [3rd parties]. They [earn] 6 digit USD [and pay] these brokers some 40-50K Rupees [$6000] every month and outsourcing it to a jobless Indian. Brokers eat away most of the money and pay the end person around 10k [$100]. The worst part, my friend said it would take around 40 hrs a month (2 hrs everyday) to complete this US client's sprint tasks (client works for a major [Multi-National Corp for] ~120k USD/year, while my friend gets 10k rupees/month [$100/mo].

16 comments

davidbhead 1 minute ago
Founder of Endorsed here. We help employers block situations like these where job seekers are collaborating with the scammers.
As other have pointed out, there are multiple types of scammers here.
The most benign are people who just want US salaries. The most malicious is North Korea who will go as far as installing ransomware and infiltrating financial institutions (especially crypto) to steal user money.
We know North Korea is much of the problem since the FBI gets involved in the malicious cases that I described and they publish reports. It’s hard to tell though because companies want to keep news they are infiltrated as quiet as possible.
I’m not sure which type of fraudster sent you this email other than the rate they are saying they will pay (50%) is exceptionally high. We know the North Koreans pay 10% for using your identity for ID verification etc, and 20% if you are the front man.
Nostrademons wrote a great comment about how they can use your identity here in problematic ways. I’m not sure how much this has happened since I have yet to hear about it in private stories from employers, who tend to be pretty candid. From what I can tell the fraudsters want to stay under the radar and be employed as long as possible. A lot are great engineers so they pull it off.
That said, rarely do people want to talk about this topic who are involved so it’s hard to tell what fully happens in each scenario.
nostrademons 2 hours ago
Basically you're lending your name and identity as a front for someone with malicious intentions.
There are a few different angles to this. Other people have already mentioned the North Korean state-sponsored espionage, but honestly I think this is a small minority of this market.
The other two big ones are visa fraud and employment fraud. With the first one, you have a developer, possibly even skilled in a low-wage overseas company (say Thailand) that wants to make American wages. If he applies as who he actually is, he makes Thai wages, which can be as low as $10K/year. If he uses your identity to apply, he makes American wages, say $200K+/year. He can split that with you and make 10x what he would otherwise, while you get $100K/year for doing nothing (assuming he's honest enough to pay out, which is not a guarantee. There's no honor in thieves).
With the second, they use his interview skills and your identity to get the job, and then do nothing except get other jobs. It's remarkably hard to fire a U.S. employee without risks of lawsuits. If the employer does seem to catch on, he has a lawyer and a psychiatrist on the payroll too. The psychiatrist produces a doctor's note that you are disabled, the lawyer threatens to sue if you are fired. "You" go on disability, where you can stay for up to a year and they can't fire you. Collect the salary, move on after the year. In the meantime, "you" (or the organization using your identity) has done the same thing to hundreds of other corporations. I personally know 2 managers that have been victimized by this scam.
In all 3 cases, you're not the direct victim of the scam. They're using your identity as a shield to legitimize the scam. When it's discovered, it's you who suffer the reputational risk and/or criminal charges.
[-]
- sjducb 2 hours ago
  I think they will create fake candidate identities. So you’re just the person who passes the interview for them. You might find that you spend most of the time interviewing and fill many positions per year. Providing lots of work for Indian developers.
  Obviously it’s fraud so don’t do it.
- butlike 1 hour ago
  Technically you would be the one paying out since your name would be in on the W2 since you're the one who interviewed.
tdullien 5 hours ago
There's been an ongoing issue with North Korean state agents infiltrating SV companies, and this proposal helps them pass the interview process more easily.
There's multipronged benefit for them: Access to company infrastructure to potentially cause harm or ransom in the future, access to technology / intelligence, but also simply foreign currency.
[-]
- nottorp 5 hours ago
  Not necessarily North Koreans only.
  Anyone in a very low income area can benefit from pretending they're in a high income area and negotiating US-like pay.
  Although the cancer stuff does look very scammy.
- jack_tripper 3 hours ago
  There's an event bigger number of Indian candidates trying to scam themselves into US jobs, than north Korean ones.
  Especially when the recruiting process of big companies becomes predictable and well documented online, candidates will just perfect the targeting and cheating of that specific system.
  What if the future just becomes in person interviews again, because every remote candidate will either be an Deepfaked scammer with a stolen ID, or a cheater with someone nearby whispering AI generated answers to him?
  [-]
  - truemotive 1 hour ago
    Employers are already including 'proof-of-life' checks on the low hanging fruit freelance sites such as Upwork. One example is literally having to get on a virtual call and obstruct your face with your hand or something similar to prevent passing any automated checks.
    Cat and mouse.
xnx 4 hours ago
Not that complicated? The scammer gets a salary for a job they would not be able to get legally.
"Arizona woman to serve 8 years for identity theft scheme benefiting North Korea": https://www.npr.org/2025/07/25/nx-s1-5479906/north-korea-ide...
[-]
- bjornarv 4 hours ago
  You manage to make the connection to North Korea, but somehow think that the salary is what they are after. Interesting
  [-]
  - chatmasta 3 hours ago
    These NK operations are after salary and intelligence. The salary ensures the operation is self-sustaining even while it doesn’t yield actionable intelligence. They can keep growing their army of staffers until they get a hit on a prime target. And since nobody at the company meets the actual worker, they can rotate “employees” as needed – when a big score is in sight, they can plug their best hackers into the operation to “close the deal” (stealing cryptocurrency, trade secrets, or other actionable intel).
rasse 5 hours ago
You should update your CV accordingly: "Likely to pass several technical interviews (as assessed by the North Korean Reconnaissance General Bureau)."
darubedarob 1 hour ago
Its a nice little window into low trust societies and what you get when you outsource and decide there is no difference in cultures about honesty and work ethics. This "applicant" will $ublet himself out of that equation once the situation has stabilized.
Nextgrid 4 hours ago
There are generally 2 angles to it:
* malicious: hostile actors want to gain footholds into companies - North Korea, etc
* benign: people in lower income countries want to do the job and can make good profit even when giving half the salary to you.
For the second option, some are scams and only want to pocket a month or two of salary without delivering before the company fires them. Others actually deliver and can keep the arrangement going long-term.
b3ing 3 hours ago
I got this offer once but they wanted 80%, which won’t even cover taxes. They wanted the money first so, which was shady, like what guarantee would anyone have they would get anything. Plus they would need all of someone’s personal info.
bryanrasmussen 4 hours ago
hmm, my ex-manager would probably appreciate these guys over me because I bet they never point out when someone is an idiot.
UniverseHacker 2 hours ago
Just playing devils advocate but don’t companies already do this to their customers, silently outsource to another company or contractor? What’s the difference here if people do this but still make sure that the work is done properly?
pgsandstrom 5 hours ago
Maybe they just want access to the specific companies? Like, you get hired by the company. You hand over username/password/vpn-info to them. Then they have a way inside the company and can try to steal information, install backdoors, whatever, with very low risk of getting caught.
robotswantdata 4 hours ago
You’ll pass the sniff test, they don’t.
Be careful they might try and use your identity to then commit more fraud.
tompark 4 hours ago
Similar thread:
https://news.ycombinator.com/item?id=41641446
anovikov 4 hours ago
You will get interviews from fake companies these same guys organised in the same manner, then you get paid, send them their half, and then it will turn out that those companies were fakes and pay came from accounts fed by stolen corporate CC numbers, and you will go to jail because everything was done from your name.
Madmallard 5 hours ago
I literally just got this email as well

ignoramous 5 hours ago

Outsourcing your own job is quite a fraud business.

https://www.reddit.com/r/developersIndia/comments/1chm6g4/nr... / https://archive.vn/DbK9x

[-]

brianwawok 4 hours ago
Yes and having employees that work 2 hours and F off just makes it not worth it. Outsource that 2h work to an AI farm and pay a grand total of $200 per month. Easy win.