Retailer Vision Direct has been warning customers that it suffered a data breach from Nov. 3 until Nov. 8. The personal information compromised includes full name, address, telephone number, email address, password and payment card information. The data was stolen via a fake Google Analytics script: https://g-analytics[.]com/libs/1.16/analytics.js – you can view a copy of the JS via the @urlscanio archive of https://t.co/TV22xvCccK. The fraud is hosted on a dodgy Russian/Romanian/Dutch/Dubai network.”]
Source: https://www.cuinfosecurity.com/magecart-spies-payment-cards-from-retailer-vision-direct-a-11709