Claire's

Magecart attackers compromised web shops belonging to large retail chains Claire’s and Intersport and equipped them with payment card skimmers.

The compromise of Claire’s online store and that of its sister brand Icing was flagged by Sansec researchers.

The malware was added to the app.min.js file.

The attackers actually gained write access to the store code.

An initial hack happened on April 30th and then another one on May 14th.

Source: https://www.helpnetsecurity.com/2020/06/15/magecart-claires-intersport/

"id": "CLA063123",
"linkid": "claire's-accessories",
"type": "Data Leak",
"date": "04/2020",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"