I read a similar story in the Microsoft CompTIA Security+ guidebook. Tthe guy outsourced his five remote jobs to people in China. He got caught when a security specialist for one company conducted an audit and noticed that the VPN token was logging in from China. Opps... He kissed five paychecks goodbye.
What an idiot. He should have had the subs loging in from a system in his home office.