A credit card swiper injection has been detected in WordPress websites using the WooCommerce plugin by secretly modifying legitimate JavaScript files.