Our DNSMon flagged an abnormal domain nominate magento-analytics[.]com, through continuous tracking, and correlation with various data, we found out that the demesne name has been used to inject malicious JS script to various online shopping sites to steal the credit card possessor / card number / termination time / CVV information.