View all newsletters
Receive our newsletter - data, insights and analysis delivered to you

Metro US news site suffers malware scare

Could the site be another victim of malicious code injection?

By Jimmy Nicholls

Metro International’s US website has been hacked to serve malicious code to users, according to security firm Websense.

The news site, which is not linked to the British newspaper of the same name, is thought to have been injected with code that redirects users to a malware download, a contention Metro is said to be investigating.

Carl Leonard, senior manager of security research at Websense, said: "The rising prevalence of cybercriminals targeting news and media sites highlights that businesses cannot afford to continue to put web security on the back burner – ignorance absolutely is not bliss when it comes to cybersecurity."

A RIG exploit kit is said to be used to drop the virus, a tool that emerged this April and has previously been connected with Cryptowall ransomware.

In the last two months the United States accounted for a third of countries affected by the kit, with Canada, Australia and the UK accounting for 6% each, according to Websense.

"A compromised website courtesy of malicious actors, as is the case with Metro US, is a disaster in every organisation’s book," Leonard added.

Content from our partners
Unlocking growth through hybrid cloud: 5 key takeaways
How businesses can safeguard themselves on the cyber frontline
How hackers’ tactics are evolving in an increasingly complex landscape

"It is therefore vital that businesses formulate a tried and trusted disaster recovery plan."

Metro has yet to reply to requests for comment.

Websites in our network
Select and enter your corporate email address Tech Monitor's research, insight and analysis examines the frontiers of digital transformation to help tech leaders navigate the future. Our Changelog newsletter delivers our best work to your inbox every week.
  • CIO
  • CTO
  • CISO
  • CSO
  • CFO
  • CDO
  • CEO
  • Architect Founder
  • MD
  • Director
  • Manager
  • Other
Visit our privacy policy for more information about our services, how New Statesman Media Group may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.