Magecart cyber criminal group has been targeting numerous eCommerce sites since 2015, to include Ticketmaster and British Airways.
The latest Magecart victim appears to be cloud service provider Feedify.
The Register reported on the incident earlier this week when more details surfaced on Wednesday.
The report mentioned MageCart was spotted on Tuesday by security researcher that goes by the name Placebo on Twitter. Placebo reported the issue was disclosed and then fixed by Feedify, but infections returned on Wednesday.
Threat researcher Yonathan Klijnsma from RiskIQ also added via Twitter that Feedly was likely compromised with MageCart since August 17th 2018.
Experts surmise there could be insider access to systems, internal infected system and/or stolen credentials that could have led to the repeated code compromise.
Check out the following related articles: