The Nitol botnet was built by pre-loading malware onto laptops during the manufacturing process in China. As it turns out, nearly half a million of those infected machines showed up here in the U.S. Research from Microsoft into the location of the Nitol-infected machines shows that the large majority of them are in China, nearly 800,000 of them. That s more than 30 percent of all of the machines on which Microsoft detected the malware. About one in every five machines purchased in China through the compromised supply chain had malware on it.
Source: https://threatpost.com/nitol-infections-fall-malware-still-popping-102412/77149/