Nearly 6,700 online stores running on top of the Magento platform are infected with the Visbot malware that hides on web servers, steals credit card information, encrypts it, hides it inside an image, and sends the encrypted credit card data to a crook's servers afterward.
Visbot isn't a new threat, being discovered in late March 2015 by SnapFast, a hosting company specialized in Magento website hosting.
Despite this, the malware has kept a low profile because it is very hard to detect Visbot infections, and not many site owners have been able to detect anything wrong in the first place.
Full Article