Attackers are increasingly using backend PHP infections, making it more challenging to detect Magecart infections without access to the compromised website’s backend code.