Researchers estimate the gun manufacturer’s website was compromised sometime before Black Friday. A Magecart group has compromised the website of American gun manufacturer Smith & Wesson by injecting malicious code designed to lift customers’ payment data at checkout. The incident was found by Sanguine Security’s Willem de Groot, who was investigating payment skimmers impersonating Sanguine Security’s anti-skimming service. He found attackers were registering malicious domains named after Sanguine and using his name as the registrant.
Source: Dark Reading