Friday, May 10, 2013

Broadcast media web sites, including www.federalnewsradio.com, hacked

In case you've missed it, you can't listen to Federal News Radio on the web, at least through Internet Explorer. In order to access the site, it is recommended that Chrome, Firefox and Safari be used.

Here's the message from www.FederalNewsRadio.com

If you are getting this page, you are using the Internet Explorer browser to reach FederalNewsRadio.com.

FederalNewsRadio.com is currently dealing with a malicious cyber attack, which attempts to use our site to infect computers with malware when using the Internet Explorer (IE) browser.

To help protect our website visitors and prevent any further damage, we have blocked access to FederalNewsRadio.com from Internet Explorer. We believe Chrome, Firefox and Safari are safe alternatives, and suggest you use one of these browsers to access the Federal News Radio website.

Federal News Radio's sister website, WTOP.com, was also affected by the attack in the same manner.

The cyber attack that compromised our web servers injected code into FederalNewsRadio.com and WTOP.com, redirecting vulnerable browsers to rogue websites, which spread the FakeAV malware or a variant of it.

If you have been on either site recently using IE, you should perform a malware scan to check for an infection and get it cleaned.

Additional information on the malware and how to respond to an infection can be found here and a removal tool, which may help, can be found here.

Federal News Radio is still in the process of performing a thorough analysis to ensure our systems are free of malicious content. We will update readers and listeners with new information on the situation as soon as it is available.

"We take cybersecurity very seriously, and ensuring that our listeners and readers can safely come to our site is of the utmost importance," said Lisa Wolfe, program director of Federal News Radio. "Federal News Radio has been and will continue to be the most trusted source of federal news for more than a decade."

Federal News Radio is one of several media websites that "were compromised and redirecting user traffic to an Exploit Kit serving the same FakeAV malware variant..." according to a blog post by Eddie Mitchell, a security engineer with Invincea.

Mitchell wrote the attacks against Federal News Radio and its sister station, WTOP, are "likely an indicator of a larger more widespread attack against online media sites."

No comments:

Post a Comment