Hackers have attacked US Treasury Department web sites, redirecting visitors to pages that attempt to install malware.

"The infection buries an invisible iframe in bep.treas.gov, moneyfactory.gov, and bep.gov that invokes malicious scripts from grepad.com, Roger Thompson, chief research officer of AVG Technologies, told The Register," writes The Register's Dan Goodin.

"To cover their tracks, the miscreants behind the compromise tailored it so it attacks only IP addresses that haven't already visited the Treasury websites," Goodin writes. "That makes it harder for white hat-hackers and law enforcement agents to track the exploit."

Click here to read the article at The Register.