North Korea’s Lazarus Group appears to have diversified into skimming online payment cards over the past year or so. Sansec says it has found evidence tying the advanced persistent threat (APT) group to attacks on the websites of several large US retailers. The sites were running WordPress and repurposed to distribute the stolen assets, the security firm says. Lazarus Group (aka Hidden Cobra) is a well-known APT group that the US government and others have described as acting on behalf of North Korea.”]