Hackers with apparent ties to North Korea have extended their bag of online attack tricks beyond cryptocurrency mining and online bank heists. Dutch security firm Sansec says it has found the same malicious infrastructure backing multiple Magecart-style attack campaigns as has been seen in attacks previously attributed to Lazarus, aka Hidden Cobra. Sansec: “To monetize the skimming operations, Hidden Cobra developed a global exfiltration network” Previous victims of this style of attack have included British Airways, Ticketmaster UK and jewelry and accessories retailer Claire’s.”]
Source: https://www.cuinfosecurity.com/north-korean-hacking-infrastructure-tied-to-magecart-hits-a-14563