It was reported that naturalfreshmall.com was hosting a payment skimmer. This website allegedly was loading naturalfreshmall.com assets at the time of compromise as reported by https://publicwww.com with the code snippet http://www.gioielleriabenvenuti.com/;12904916;cript src=https://naturalfreshmall.com/image/pixel.js>