Hackers from North Korea have been stealing payment card information from customers of large retailers in the U.S. and Europe for at least a year. The victims include accessories giant Claire s, Wongs Jewellers, Focus Camera, Paper Source, Jit Truck Parts, CBD Armour, Microbattery, and Realchems. Hackers used legitimate websites to exfiltrate the stolen credit card data and camouflage the operation. Researchers at web security company Sansec discovered that skimmers were loaded from domains that served malware in successful spear phishing attacks attributed to North Korean (DPRK) hacker activity, Lazarus group.
Source: https://www.bleepingcomputer.com/news/security/north-korean-hackers-linked-to-credit-card-stealing-attacks-on-us-stores/