Expert Comments

Comment: North Korean Hackers’ Involvement to Credit Card Stealing Attacks on US Stores

Expert(s): Security Experts
Expert(s): Security Experts

Today, new research has been released revealing the truth that for a least a year, North Korean hackers have been stealing card information from large retailers’ customers in the U.S and Europe. And according to researchers, such a fraudulent scheme directs to the Lazarus (Hidden Cobra), a group of nation-state hackers. In the act of exfiltrating the stolen credit card data and hiding the operation, legitimate websites have been used. In the past years, this credit card information stealing incident from customers of online stores is becoming a threat. These are what we commonly known as the MageCart attacks from which hackers use malicious scripts (web skimmers) to copy private information from the checkout page.

Experts Comments

July 06, 2020
Jamie Akhtar
CEO and Co-founder
CyberSmart
The COVID-19 crisis has accelerated society's transition to a cashless economy and cybercriminals are clearly taking advantage of the increase in online spending. Online retailers need to be prioritizing their cybersecurity right now. Luckily, that doesn't have to be difficult or costly. Following the basics of cyber hygiene can go a long way in preventing these types of breaches which are often due to a simple error like unpatched software. This was the case with British Airways who had the.....Read More
The COVID-19 crisis has accelerated society's transition to a cashless economy and cybercriminals are clearly taking advantage of the increase in online spending. Online retailers need to be prioritizing their cybersecurity right now. Luckily, that doesn't have to be difficult or costly. Following the basics of cyber hygiene can go a long way in preventing these types of breaches which are often due to a simple error like unpatched software. This was the case with British Airways who had the data of 380,000 customers stolen in 2018 using unpatched Magento software. It is critical that businesses keep their e-commerce software up-to-date and review their basic security settings. In addition, they should review all of their users and check everyone who has FTP, SFTP, SCP, SSH, and VPN access.  Read Less

Submit Your Expert Comments

What do you think of the topic? Do you agree with expert(s) or share your expert opinion below.
Be part of our growing Information Security Expert Community (1000+), please register here.

Write Your Expert Comments *
Your Registered Email *
Notification Email (If different from your registered email)
* By using this form you agree with the storage and handling of your data by this web site.
SUBMIT

You may also like

Panasonic Becomes Latest Victim Of Data Breach – Security Expert...

Clearview’s £17 Million Fine For Processing 10+ Billion Images Is...

Booz Allen Report On CISOs And China Quantum Computing Risks,...

Experts Reactions On Sky Broadband Hack Warning

Ransomware Set To Break Records This Black Friday 2021

Security Expert On Apple Suing NSO Group

Meta Delays Plans To Rollout End-to-end Encryption

NCSC Issues Black Friday Warning To Tetailers

How The Zelle Fraud Scam Steals Your Bank Credentials

GoDaddy Data Breach Impacts Over A Million Users, Experts Reactions

Information Security Buzz (aka ISBuzz News) is an independent resource that provides the experts comments, analysis and opinion on the latest Information Security news and topics

Twitter Facebook-f Linkedin Youtube

Working With Us

The Pages

Our Contributing Experts