The popular real-time web analytics platform, StatCounter, which runs stats on 10 billion-page views per month by the two million websites that use them, has been hit with malware. Attackers infused vindictive code within statcounter.com/counter/counter.js, a bit of JavaScript that StatCounter’s clients install in their sites to measure their guest movement. The content is initiated when the URL contained a particular Uniform Resource Identifier (URI): myaccount/pull back/BTC. It reroutes the Bitcoin destination address and replaces it with an address belonging to the hacker. “The malicious server generates a new Bitcoin address each time a visitor loads the statconuter[.]com/c.php script. Thus, it is hard to see how many bitcoins have been transferred to the attackers. StatCounter officials removed the script on Tuesday after Gate.io stopped using their service to prevent further damage.