Payment card data of thousands of online shoppers has been stolen at checkout via malicious JavaScript code. The code is designed to capture payment card data on a checkout page; the package is then delivered to a server and collected by the cybercriminals. The script was discovered early this month and dubbed GMO by Group-IB, a company that specializes in preventing cyber attacks. The groups engaged in this type of card-scraping campaigns have been active since 2015, and are known by the name MageCart, given by security company RiskIQ.
Source: https://www.bleepingcomputer.com/news/security/malicious-javascript-active-on-fila-uk-and-other-websites/