May 03, 2010

U.S. Treasury websites infected with malicious script

Three U.S. Department of Treasury websites have been compromised to spread malware, a security researcher said Monday.

The sites belong to the U.S. Bureau of Engraving and Printing, whose primary mission is to produce paper currency for the federal government.

Roger Thompson, chief researcher officer of AVG, said the attackers injected a malicious IFRAME into the sites, causing visitors to unknowingly be redirected to a hacker-owned site in the Ukraine. The attack site, grepad.com, previously has been flagged as suspicious, according to a StopBadware report.

A spokesperson for the Treasury Department did not immediately respond to a request for comment. It is unclear whether any visitors were infected.

Thompson said bep.gov, bep.treas.gov and moneyfactory.gov are affected.

Related Articles
Related Topics
Related Links

More in News

Operators again revive Pushdo botnet, use a popular tactic to stay hidden ...

Botnet operators are using a domain-generation algorithm to conceal their command-and-control center. And once they knew security researchers were on to their tricks, they got even slicker.

Mac spyware discovered on Angolan dissident's computer at Oslo Freedom Forum

Mac spyware discovered on Angolan dissident's computer at ...

Security researchers are studying an apparent new strain of Mac malware that turned up on the computer of a participant at the just-concluded Oslo Freedom Forum, an annual human rights ...

Judge in London sentences LulzSec members

Judge in London sentences LulzSec members

The sentences range from 20 to 32 months, with none of the defendants likely to serve the full time. There has been no formal request to extradite the U.K. men ...