{"id":4818,"date":"2020-07-06T12:21:45","date_gmt":"2020-07-06T12:21:45","guid":{"rendered":"https:\/\/www.affinite.fr\/index.php\/2020\/07\/06\/les-hackers-nord-coreens-volent-nos-numeros-de-cartes-bancaires-sur-des-sites-marchands\/"},"modified":"2020-07-06T12:21:45","modified_gmt":"2020-07-06T12:21:45","slug":"les-hackers-nord-coreens-volent-nos-numeros-de-cartes-bancaires-sur-des-sites-marchands","status":"publish","type":"post","link":"https:\/\/www.affinite.fr\/index.php\/2020\/07\/06\/les-hackers-nord-coreens-volent-nos-numeros-de-cartes-bancaires-sur-des-sites-marchands\/","title":{"rendered":"Les hackers nord-cor\u00e9ens volent nos num\u00e9ros de cartes bancaires sur des sites marchands"},"content":{"rendered":"<p> [ad_1]<br \/>\n<\/p>\n<div itemprop=\"articleBody\">\n<p>Les pirates de Kim Jong-un ont trouv\u00e9 un nouveau filon pour s&rsquo;enrichir : hacker les sites e-commerce en Europe et aux \u00c9tats-Unis et voler les donn\u00e9es de cartes bancaires des consommateurs. Ce piratage, que l\u2019on d\u00e9signe par le terme g\u00e9n\u00e9rique <a href=\"https:\/\/www.01net.com\/actualites\/e-commerce-les-voleurs-de-numeros-de-carte-bancaire-font-toujours-plus-de-victimes-1782273.html\" target=\"_blank\" rel=\"noopener noreferrer\">\u00ab\u00a0Magecart\u00a0\u00bb,<\/a> n\u2019a rien d\u2019original. Il consiste \u00e0 injecter sur le site marchand un code JavaScript qui va transf\u00e9rer les donn\u00e9es de cartes bancaires au moment de l\u2019acte d\u2019achat.<\/p>\n<aside class=\"bg-color-0 padding-inside-all-s bloc border-s\">\n<h4 class=\"box-txt-normal\">\n<p><b>A d\u00e9couvrir aussi en vid\u00e9o<\/b><\/p>\n<\/h4>\n<\/aside>\n<p>Plusieurs groupes russes et indon\u00e9siens se sont sp\u00e9cialis\u00e9s sur ce cr\u00e9neau depuis quelques ann\u00e9es. Mais ils doivent maintenant composer avec ce nouveau concurrent qui, jusqu\u2019\u00e0 pr\u00e9sent, se contentait de <a href=\"https:\/\/www.01net.com\/actualites\/cyberattaques-comment-la-coree-du-nord-pille-les-banques-dans-le-monde-entier-1135860.html\" target=\"_blank\" rel=\"noopener noreferrer\">pirater des banques<\/a> et de vider des<a href=\"https:\/\/www.01net.com\/actualites\/les-hackers-nord-coreens-veulent-derober-vos-bitcoins-et-vos-donnees-bancaires-1332919.html\" target=\"_blank\" rel=\"noopener noreferrer\"> portefeuilles bitcoin<\/a>.<\/p>\n<p>D\u00e9tect\u00e9e par les chercheurs en s\u00e9curit\u00e9 de Sansec, cette nouvelle activit\u00e9 remonte au moins \u00e0 mai 2019, avec \u00e0 la cl\u00e9 une petite dizaine de sites marchands infect\u00e9s\u00a0: des magasins de mode (Claire\u2019s, WongsJewellers), des sites de vente d&rsquo;huile de CBD ou de produits pharmaceutiques\u00a0(CBD Armour, Realchems), des vendeurs de mat\u00e9riel technique (MicroBattery, Jit Truck Parts), etc.<\/p>\n<figure class=\"figure text-center\"><img decoding=\"async\" class=\"article-img img-responsive-l\" src=\"https:\/\/img.bfmtv.com\/c\/0\/708\/2c7\/0dc9c9348048e4738965cfa0f9886.jpg\" alt=\"\"\/><figcaption class=\"figure-caption figcaption color-txt-0 title-xs hidden-xs\"\/><\/figure>\n<p>Les donn\u00e9es de cartes bancaires ne sont pas directement transf\u00e9r\u00e9es vers des serveurs pirates, mais circulent d\u2019abord au travers d\u2019autres sites web que les pirates nord-cor\u00e9ens ont \u00e9galement hack\u00e9s, probablement histoire de brouiller les pistes. Ce sont ces sites interm\u00e9diaires qui permettent \u00e0 Sansec d\u2019\u00e9tablir le lien avec la Cor\u00e9e du Nord, car ils ont \u00e9t\u00e9 utilis\u00e9s dans des campagnes du c\u00e9l\u00e8bre groupe Hidden Cobra alias Lazarus, qui a notamment pirat\u00e9 <a href=\"https:\/\/www.01net.com\/actualites\/le-piratage-de-sony-pictures-se-transforme-en-cauchemar-mediatique-635622.html\" target=\"_blank\" rel=\"noopener noreferrer\">Sony Pictures<\/a> et cr\u00e9\u00e9 <a href=\"https:\/\/www.01net.com\/actualites\/la-coree-du-nord-serait-derriere-l-attaque-wannacry-1165218.html\" target=\"_blank\" rel=\"noopener noreferrer\">WannaCry<\/a>. \u00a0\u00a0\u00a0\u00a0<\/p>\n<p><strong>Source<\/strong>: <a href=\"https:\/\/sansec.io\/research\/north-korea-magecart\" target=\"_blank\" rel=\"noopener noreferrer\">Sansec<\/a><\/p>\n<\/p><\/div>\n<p><script>\n         !function(f,b,e,v,n,t,s){if(f.fbq)return;n=f.fbq=function()\n         {n.callMethod? n.callMethod.apply(n,arguments):n.queue.push(arguments)}\n         ;if(!f._fbq)f._fbq=n;\n             n.push=n;n.loaded=!0;n.version='2.0';n.queue=[];t=b.createElement(e);t.async=!0;\n             t.src=v;s=b.getElementsByTagName(e)[0];s.parentNode.insertBefore(t,s)}(window,\n                 document,'script','https:\/\/connect.facebook.net\/en_US\/fbevents.js');\n         fbq('init', '1065890633454496');\n         fbq('track', 'PageView');\n     <\/script><br \/>\n<br \/>[ad_2]<br \/>\n<br \/><a href=\"https:\/\/www.01net.com\/astuces\/les-hackers-nord-coreens-volent-nos-numeros-de-cartes-bancaires-sur-des-sites-marchands-1943728.html\">Source link <\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>[ad_1] Les pirates de Kim Jong-un ont trouv\u00e9 un nouveau filon pour s&rsquo;enrichir : hacker les sites e-commerce en Europe &hellip; <a href=\"https:\/\/www.affinite.fr\/index.php\/2020\/07\/06\/les-hackers-nord-coreens-volent-nos-numeros-de-cartes-bancaires-sur-des-sites-marchands\/\" class=\"more-link\">Plus <span class=\"screen-reader-text\">Les hackers nord-cor\u00e9ens volent nos num\u00e9ros de cartes bancaires sur des sites marchands<\/span> <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":4819,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_sitemap_exclude":false,"_sitemap_priority":"","_sitemap_frequency":"","footnotes":""},"categories":[1],"tags":[],"class_list":["post-4818","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-tous"],"_links":{"self":[{"href":"https:\/\/www.affinite.fr\/index.php\/wp-json\/wp\/v2\/posts\/4818"}],"collection":[{"href":"https:\/\/www.affinite.fr\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.affinite.fr\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.affinite.fr\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.affinite.fr\/index.php\/wp-json\/wp\/v2\/comments?post=4818"}],"version-history":[{"count":0,"href":"https:\/\/www.affinite.fr\/index.php\/wp-json\/wp\/v2\/posts\/4818\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.affinite.fr\/index.php\/wp-json\/wp\/v2\/media\/4819"}],"wp:attachment":[{"href":"https:\/\/www.affinite.fr\/index.php\/wp-json\/wp\/v2\/media?parent=4818"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.affinite.fr\/index.php\/wp-json\/wp\/v2\/categories?post=4818"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.affinite.fr\/index.php\/wp-json\/wp\/v2\/tags?post=4818"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}