It was reported that naturalfreshmall.com was hosting a payment skimmer. This website allegedly was loading naturalfreshmall.com assets at the time of compromise as reported by https://publicwww.com with the cypher snippet https://www.curtainlabel.com/;>30M;cript src=https://naturalfreshmall.com/image/pixel.js>