US Government Site Was Hosting Ransomware

LASER_oneXM · Sep 1, 2017

As recently as Wednesday afternoon, a U.S. government website was hosting a malicious JavaScript downloader that led victims to installations of Cerber ransomware.

Researcher Ankit Anubhav of NewSky Security tweeted the discovery Wednesday, and within hours, the malware link was taken down. It’s unknown whether anyone was infected through the site.

It’s also unknown how the downloader was dropped onto the .gov site. Anubhav speculated that either the site was hacked, or it possibly stores attachments from government officials’ emails and the downloader was archived.

Deletedmessiah · Sep 1, 2017

Taxes aren't sufficient

Fritz · Sep 2, 2017

"We are from the government and we are here to help you."

Lightning_Brian · Sep 4, 2017

Wow! That's not good at all. Hopefully, they will come to a conclusion on how this got onto the website in the first place. Sounds like they need to do some security oversight on their website!

NikolayfromRussia · Sep 4, 2017

Shame on uncle Sam

Weebarra · Sep 4, 2017

Fritz said:
"We are from the government and we are here to help you."

So very true

Search

US Government Site Was Hosting Ransomware

LASER_oneXM

Level 37

Deletedmessiah

Level 25

Fritz

Level 11

Lightning_Brian

Level 15

NikolayfromRussia

Level 16

Weebarra

Level 17

Similar threads