A threat alert has been identified by Foregenix via their FGX-Web solution.
The attack both breaches and reinfects target sites.
Forgenix states:
“The entry point of these breaches appears to be a vulnerability in unpatched versions of Magento, with the threat actors placing additional backdoors on the site, as well as their card harvesting malware.”
Full details can be found at Foregenix