A fresh splinter group under the Magecart umbrella has been discovered ramping up activity starting in August-September of 2019. It s using a unique codebase and different tactics to carry out its attacks, according to researchers. Magecart is an umbrella term encompassing several different threat groups who all use the same modus operandi: They compromise websites in order to inject card-skimming scripts on checkout pages, stealing customers payment card details. This new skimming/phishing hybrid threat tactic means that even stores that send customers to external payment processors are vulnerable.
Source: https://threatpost.com/magecart-variant-tactics-mitm-phishing/150628/