U.S. Treasury websites infected with malicious script

By on

Malicious IFRAME used.

Three US Department of Treasury websites have been compromised to spread malware, a security researcher said yesterday.

The sites belong to the US Bureau of Engraving and Printing, whose primary mission is to produce paper currency for the federal government.

Roger Thompson, chief research officer at AVG, said the attackers injected a malicious IFRAME into the sites, causing visitors to unknowingly be redirected to a hacker-owned site in the Ukraine. The attack site, grepad.com, has previously been flagged as suspicious, according to a StopBadware report.

A spokesperson for the Treasury Department did not immediately respond to a request for comment. It is unclear whether any visitors were infected.

Thompson said bep.gov, bep.treas.gov and moneyfactory.gov are affected.

See original article on scmagazineus.com

Copyright © SC Magazine, US edition
Tags:
infected malicious script security treasury us websites with

Most Read Articles

Westpac finally moves to re-architect IT for NPP

Westpac finally moves to re-architect IT for NPP
Optus fibre cable cut in Melbourne

Optus fibre cable cut in Melbourne
Equifax's top tech execs leave 'effective immediately'

Equifax's top tech execs leave 'effective immediately'
NBN Co targets in-home wiring faults

NBN Co targets in-home wiring faults
You must be a registered member of iTnews to post a comment.
| Register

Whitepapers from our sponsors

Solving IT complexity
Solving IT complexity
Optimising Enterprise Data Centres for the Cloud
Optimising Enterprise Data Centres for the Cloud
Growing companies have a growing interest in technology
Growing companies have a growing interest in technology
RSA NetWitness® Endpoint. Respond 3X Faster to Threats
RSA NetWitness® Endpoint. Respond 3X Faster to Threats
Building platforms for future health and education
Building platforms for future health and education

Events

Log In

Username:
Password:
|  Forgot your password?