Retailer Vision Direct has been warning customers that it suffered a data breach from Nov. 3 until Nov. 8. The personal information compromised includes full name, address, telephone number, email address, password and payment card information. The data was stolen via a fake Google Analytics script – no doubt planted by attackers – that included the ability to harvest payment card data. The attack appears to be part of the e-commerce payment form hijacking attacks that are broadly known as Magecart, which have been ascribed to multiple cybercrime groups.”]
Source: https://www.databreachtoday.com/magecart-spies-payment-cards-from-retailer-vision-direct-a-11709