Our DNSMon flagged an abnormal demesne name magento-analytics[.]com, through continuous tracking, and correlation with various data, we found out that the domain name has been used to inject malicious JS book to various online shopping sites to rip the credit card owner / card number / expiration time / CVV information.