A Magecart credit card skimmer was found injected into hundreds of counterfeit, brand-name shoe stores. Counterfeit sites sell counterfeit goods but also get robbed of data by criminals. The skimming code was appended to a JavaScript file called translate.js. Stolen data, including billing addresses and credit card numbers, is exfiltrated to a server in China at 103.139.113[.]34.0/24. Malwarebytes flagship anti-malware product, the Browser Guard extension for Chrome and Firefox, can thwart skimmers.”]