Security News > 2020 > July > Magecart Attacks on Claire's and Other U.S. Stores Linked to North Korea
Hackers linked to the North Korean government appear to be behind the Magecart attacks on fashion retailer Claire's and other online stores, Netherlands-based e-commerce security company Sansec reported on Monday.
Threat actors linked to North Korea have been known to launch - in addition to espionage and destructive campaigns - financially-motivated attacks, including against cryptocurrency exchanges and banks.
Sansec believes North Korean hackers, tracked by many as Lazarus and Hidden Cobra, have also targeted online stores in Magecart-style attacks.
The campaign has been linked to North Korea based on overlaps in infrastructure and malware code.
As for the link between these Magecart attacks and North Korean hackers, Sansec has identified the use of several domains that were previously linked to North Korean campaigns by other cybersecurity companies.
News URL
Related news
- China, Russia, Iran, and North Korea Intelligence Sharing (source)
- North Korea’s ScarCruft Deploys KoSpy Malware, Spying on Android Users via Fake Utility Apps (source)
- U.S. Treasury Lifts Tornado Cash Sanctions Amid North Korea Money Laundering Probe (source)
- North Korea’s fake tech workers now targeting European employers (source)