Comment by pgsandstrom

Maybe they just want access to the specific companies? Like, you get hired by the company. You hand over username/password/vpn-info to them. Then they have a way inside the company and can try to steal information, install backdoors, whatever, with very low risk of getting caught.