Malware
magecart
Magecart is a malware framework intended to steal credit card information from compromised eCommerce websites.
magecart is a JavaScript malware family operated by FIN6 and MageCart.
Background
Magecart is a framework designed to siphon payment card data from breached eCommerce sites. Operated for criminal gain, it is an advanced implant that layers relays, command-and-control infrastructure and anonymizers to capture shoppers' card details. Its first stage is usually JavaScript injected into a compromised checkout page, where it harvests values from "input fields" and ships them to a relay. That relay aggregates cards from a group of compromised stores and passes them along to Command and Control servers.
Source: Malpedia (Fraunhofer FKIE).