From cyware.com
In a recent discovery, cybersecurity experts have come across a new Magecart campaign that aims to steal sensitive PII and credit card data from e-commerce websites. Akamai has identified victims of different scales across North America, Latin America, and Europe.
This new campaign is unique in the way that threat actors establish their C2 infrastructure on seemingly legitimate websites, frequently exploiting well-known vulnerabilities to achieve this.