According to a post on The Register, several US Treasury Department web sites are redirecting visitors to other sites that try to install malware on their computers. The attack uses an embedded iframe in three Treasury web sites that invokes scripts from another site.
The malware affects only computers that have not previously visited Treasury web sites. Evidence suggests that the attacks are related to the infections several weeks ago of sites hosted by Network Solutions. The affected treasury sites are all hosted by Network Solutions, and the owner of record of the malicious sites used in the attack is the same as the owner of record for the sites used in the previous attacks.
Read The Register’s full report: Hacked US Treasury Websites Serve Visitors Malware