Blackhole exploit posted on US Postal Service site

The US Postal Service has pulled down a site hosting malicious code that was earlier used in a sophisticated multi-stage attack featuring the Blackhole Exploit kit. The infected site - http://ribbs.usps.gov - which is involved in the delivery of USPS's business mail-focused barcode-based Intelligent Mail services - was …

This topic is closed for new posts.

Posted Friday 8th April 2011 14:06 GMT

Jess--

site infected

http://research.zscaler.com/2011/04/uspsgov-website-infected-with-blackhole.html

avast reckons there is some sort of javascript infection on there and blocks the connection

Posted Friday 8th April 2011 15:29 GMT

Dave Dowell

It's in the quotes.

That blog quotes the obfuscated javascript, so matches the signature in the avast database.

Posted Friday 8th April 2011 22:22 GMT

Anonymous Coward

USPS tag-line...

"We deliver..." (malicious code)

Posted Friday 8th April 2011 22:25 GMT

dssf

Hahaha

When I first read this, my mind saw "Blackhole Exploited at US Postal Site"...I thought it was a gag story claiming that the USPS was tapping into a power source...

Posted Sunday 10th April 2011 10:02 GMT

Anonymous Coward