The U.S. Department of Labor website was hacked Tuesday evening so that the computers of visitors to the web site would be infected with malaware. The malware infections appeared to have been stopped by late Wednesday morning, and the site has since been fixed. Details here:
- U.S. Labor Dept. Website Hacked, Serves Malware, by Mathew J. Schwartz, Information Week (May 01, 2013).
If a system was successfully compromised by the malicious code running on the Department of Labor’s website, it would “phone home” to a command-and-control (C&C) server that’s disguised as a Microsoft update server.