Cybercriminal gang dubbed “UltraRank” has planted malicious JavaScript code in hundreds of e-commerce sites around the world to steal payment card data. The gang created its own carding shop called ValidCC that sells the stolen credit card data to other fraudsters. UltraRank has been in operation since at least 2015, according to a security firm Group-IB report. Many of the targeted sites were built using Adobe’s Magento content management system (see: Surge in JavaScript Sniffing Attacks Continues)”]
Source: https://www.healthcareinfosecurity.com/ultrarank-gang-sells-card-data-steals-a-14928