Hackers hid sophisticated malware on Puma Australia’s website that could steal your credit card information at checkout, a security researcher found. Sanguine Security forensic analyst Willem de Groot said he found suspicious code tucked away on Puma Australia’s page containing a script that logged people’s credit card numbers, names and addresses when they typed them in on the website. The code sent victims’ data over to a server registered in Ukraine, de Groot said. The security researcher said he notified Puma last Friday and didn’t hear back from the company. Puma didn’t immediately respond to a request for comment.