Two web skimmers have been discovered on the payment webpages of Costway, one of the top retailers in North America and Europe. The skimmers are targeting consumers credit-card payment details. One of these skimmers is piggybacking on top of the other, to take over the fake forms that had previously been injected onto Costway s site. The website under attack runs on the no-longer-maintained Magento 1 e-commerce software branch.
Source: https://threatpost.com/magento-web-skimmers-costway/163593/