More than 2,000 websites running Magento Version 1 software were subject to a classic Magecart attack that injected malicious code to steal payment details during transactions. Most of the victims previously had not been successfully attacked, suggesting a novel infection mechanism was used. Sansec’s report says that more than 95,000 e-commerce stores are still running Magento Version 1, a version that reached end-of-life in June. For more information, visit Sansec.com/sansec.”]
Source: https://www.darkreading.com/application-security/e-commerce-sites-hit-with-new-attack-on-magento