January 22, 2016
It didn’t take long for 2016 to present a global infection. After only a few days of the new year, Symantec telemetry registered significant spikes in detections for the Intrusion Prevention System (IPS) signature Web Attack: Mass Injection Website 19. This signature is used to detect when a hidden script injected in a compromised website is used to redirect users to a website hosting malicious code. It is triggered when a user browses to a compromised website.
Attempts to access the malicious websites were mostly seen in the United States (47 percent), followed by India (12 percent), then the United Kingdom, Italy, and Japan (6 percent each).