Comment by cyberax

Comment by cyberax 11 hours ago

6 replies

View on Hacker News

> I work at a small (~30 person) SaaS company. We interviewed what I took to be a case of this the other day (all the classic signs). Nobody would be keeping an eye on our hires or letting us know about this.

I'm in a similar situation. The HR leads company is trying to filter out the fakes, but they can't catch everyone.

Apparently, the infiltrators specifically target the companies in the 10-50 people range. In smaller companies everybody knows what everybody else is doing, so infiltrators will be swiftly uncovered. And larger companies typically have a well-established HR department that will catch obvious fakes without good cover.

But these mid-range companies provide the best chance for the fakes to get at least a couple of paychecks before being uncovered. And they likely won't bother with going to the FBI to chase down the payments.

Barbing 3 hours ago

[Background: We both know companies should (must?) inform the feds if they accidentally (illegally?) hire someone as a part of fraud perpetrated against them.]

>And they likely won't bother

Thank you for your insight. Unfortunate! The rationale makes sense—the temptation to sweep under the rug—but doesn’t make it right, which as established we both know.

…you can perhaps tell I was frustrated with what seemed to be an argument against actually taking this course of action; hope replying here is better than arguing directly downthread esp. in case I misunderstood something

Reply View 0 replies
alganet 10 hours ago

Why shouldn't they go to the FBI?

I strongly recommend going to official authorities if you believe you're being duped by a foreign nation spy or conspirator.

If they ignore you, it's more likely that you're not that important, like I said previously.

Reply View 4 replies
  • cyberax 9 hours ago

    > Why shouldn't they go to the FBI?

    I'm not saying "shouldn't". It's more likely "don't bother".

    Interacting with the law enforcement takes time executives' time, it might bring in complications (legal liability for personal data leaks, etc.), and even in the best case the company is not going to get their money back.

    Reply View 3 replies
    • alganet 9 hours ago

      So, it's a big problem that everyone should know about but do nothing except post shit on news?

      No, you should bother. You should bother a lot. Get in contact with the FBI, make a huge deal about it. You think one company can handle a spy agency? That's bad advice.

      Reply View 2 replies
      • cyberax 7 hours ago

        Sure, feel free to tell that to every mid-size company.

        Reply View 1 reply
        • alganet 7 hours ago

          You are mixing hypothetical scenarios with reality.

          My argument was to inform high value targets first, since they are more at risk and capable of developing a fix.

          I also argued for slowing down the development of technology that can help infiltrators.

          Go back, read the discussion, see how far you are from the simple truth. Someone is making IT companies paranoid, either on purpose or by mistake. Probably, by greed or as a consequence to it.

          Reply View 0 replies