[danielvf]

It used to be only against specific industries, but now it's evolving. Now they have groups just going after remote IT jobs regardless of industry.

[nradov]

Beyond just the salary, once they have access to the corporate network they can execute other attacks to steal from company accounts and infiltrate connected business partners. Most organizations still have very weak protection against insider threats.