Trend Micro Senior Threat Researcher Feike Hacquebord and Network Architect Paul Ferguson discovered yet another government Web site compromise, this time affecting a Ukrainian government agency. A subdirectory in the said site (zito.mvs.gov.ua) redirects users to another page advertising a weight-loss drug.

Below is a sample of a spammed email message that points to the compromised page (http://zito.mvs.gov.ua/{BLOCKED}/):

Meanwhile, here’s a screenshot of the pharma page: