According to a report by security research, Coinhive - a mining code for cryptocurrency; was found on many government and universities websites. The code is currently running on over 400 websites across the globe, including Lenevo, San Diego Zoo, Office of the Inspector General Equal Employment Opportunity Commission (EEOC) and sites for the University of Aleppo and the UCLA Atmospheric and Oceanic Sciences program.
The location of most affected websites is the United States and hosted by Amazon. It's been believed, the compromise is due to outdated Drupal version, the report highlighted.
Once the code was deobfuscated, the reference to “http://vuuwd.com/t.js” was clearly seen. Upon visiting the URL, the ugly truth was revealed. A slightly throttled implementation of Coinhive was found.