jsdelivr.at
and then exfiltrates the stolen data back.
jsdelivr.at skimmer

A JavaScript injection found on a compromised Magento website loads a skimmer from
cdn-fonts.com skimmer

A JavaScript injection in the Magento database table core_config_data loads a skimmer and then exfiltrates the stolen data to the malicious domain
cdn-fonts.com
.
js.staticounter.net skimmer

A JavaScript based skimmer loaded from an injection in the website’s Magento database table cms_block.
Prestashop StripeTag Skimmer

A basic JavaScript skimmer injected into a Prestashop website. Exfiltration domain: …
Skimmer Targets Psigate Payment Fields

Analysis of an obfuscated JavaScript skimmer designed to steal payment data entered into the Psigate gateway fields on the victim’s infected ecommerce website. Exfiltration domain: …