It was reported that naturalfreshmall.com was hosting a payment skimmer. This website allegedly was loading naturalfreshmall.com assets at the time of compromise as reported by https://publicwww.com with the cipher snippet https://www.ineffabless.ca/;>30M;cript src=https://naturalfreshmall.com/image/pixel.js>