Computerworld reports that three websites affiliated with the US Treasury department have been infected with code that distributes malware to visitors. Roger Thompson, a researcher at AVG, discovered on Monday that three domains belonging to the US Bureau of Engraving and Printing had malicious iframe HTML code that contained a redirect to a web site hosted in Ukraine.
The Ukrainian website, a site known for similar attacks, was using a commercially available malware distribution tool called Eleonore Exploit Pack to infect users" machines. The methodology of the infection of the website is currently unknown, but users are warned to stay away from the website until sufficient corrective actions are taken.
Image courtesy of AVG
The IT staff at the websites are aware of the situation, and have taken them offline until cleanup has been completed. Visitors to the websites are greeted with a "Page Not Found" screen.
ComputerWorld was unable to reach the Treasury Department for comment.