Mountain Rides Resolves Recent Cybersecurity Threats

Wood River Valley’s public transportation agency, Mountain Rides, has resolved a cybersecurity incident affecting its website after a malicious pop-up box appeared this week, threatening visitors with a computer virus. The issue was identified on Wednesday, June 5, 2026, and resolved by Friday morning, according to a statement from Mountain Rides spokeswoman Andrea Hernandez.

The pop-up box, which appeared when users attempted to access the website, demanded visitors complete a series of steps to “prove they’re not a robot,” including keyboard commands and on-screen button clicks. Hernandez confirmed the threat was not a targeted attack on Mountain Rides but rather part of a broader compromise affecting WordPress.com-hosted websites, including its own.

This is the third such incident for Mountain Rides in 2026. Two similar cybersecurity threats were resolved “right away” after they occurred on May 7 and May 13, Hernandez stated. The agency has since restored full functionality to its website, which is once again safe for public use.

The agency’s reliance on WordPress.com for its website infrastructure has been a recurring factor in these incidents. Hernandez advised users to report any similar pop-ups to info@mountainrides.org if encountered in the future.

Cybersecurity threats targeting public-facing websites remain a growing concern, particularly for organizations using third-party platforms like WordPress.com. While Mountain Rides has contained these incidents, the broader trend highlights the risks of shared hosting environments and the need for robust security measures in public transportation systems.

This report is based on verified statements from Mountain Rides spokeswoman Andrea Hernandez, as documented in MT Express on June 6, 2026.