Credit card thieves are targeting WordPress e-commerce sites powered by WooCommerce with a dedicated JavaScript-based card-skimmer malware. This is not the first time WooCommerce e-shops were targeted in credit card stealing attacks (also known as Magecart attacks) The FBI has issued a warning about e-skimming threats targeting small and medium-sized businesses (SMBs) and government agencies that process online payments. The attack was discovered by Sucuri’s Ben Martin following multiple fraudulent credit card transaction reports from clients with WooCommerce sites.
Source: https://www.bleepingcomputer.com/news/security/credit-card-thieves-target-woocommerce-sites-with-new-skimmer/