"WordPress WooCommerce Sites Targeted by Card Swiper Attacks"

Credit card swipers found a new hard-to-detect way to target WordPress websites using the WooCommerce plugin. Researchers at Securi, have discovered that credit card swipers are hiding malicious JavaScript code inside system files. Most attacks on ecommerce systems involve appending code at the end of a file, which is effective but easier for defenders to spot.