New CC info grabbing technique found in the wild.
This time, instead of skimming your CC info while you're typing it in, attackers are now sending you to their site pretending to be a 3rd party payment provider where you gladly type in your CC#.
You probably won't notice until they redirect you to the actual payment provider and are asked to type in your CC# again.