The Atlanta Hawks professional NBA basketball team’s online shop had malicious code injected into it that allowed attackers to steal customer’s credit card information. This type of attack is called a MageCart infection and is when attackers compromise an ecommerce site to inject JavaScript into the checkout or cart pages. This script then steals credit card and address information entered into these pages and sends it off to a remote server for the attackers to collect. When a user purchased something while the site was infected, it would make an additional request to the remote site imagesengines[.]com, which is under attacker’s control.
Source: https://www.bleepingcomputer.com/news/security/atlanta-hawks-online-shop-hit-with-credit-card-stealing-attack/