Hackers are using misconfigured AWS S3 data storage buckets to insert malicious code into websites in an attempt to swipe credit card information and carry out malvertising campaigns. Cybersecurity firm RiskIQ said it identified three compromised websites belonging to Endeavor Business Media last month that are still hosting JavaScript skimming code. The unpatched affected websites host emergency services-related content and chat forums catering to firefighters, police officers, and security professionals. RiskIQ is working with Swiss non-profit cybersecurity firm Abuse.ch to sinkhole the malicious domains associated with the campaign.
Source: https://thehackernews.com/2020/06/magecart-skimmer-amazon.html