Websites operated by the US Treasury Department are redirecting visitors to
websites that attempt to install malware on their PCs, a security researcher
warned on Monday.
The infection buries an invisible iframe in bep.treas.gov, moneyfactory.gov,
and bep.gov that invokes malicious scripts from grepad.com, Roger Thompson,
chief research officer of AVG Technologies, told The Register. The code was
discovered late Sunday night and was active at time of writing, about 12 hours
later.
