Hackers added 50 extra lines of code that were designed to send all the information submitted by a customer during the checkout process to a third-party site: soulmagic.biz.com/add Hackers used the java-e-shop.com URL to dump stolen payment details. Other Magento sites also had been hit by this attack, with the earliest known incidents going back to December of 2013. When hackers manage to compromise an ecommerce site, the owners of the website can be robbed too. You can never tell whether it is really secure to enter your credit card details on a site or not.”]
Source: https://blog.sucuri.net/2015/04/impacts-of-a-hack-on-a-magento-ecommerce-website.html