The official Web site of Asustek Computer has been hijacked and used to serve up exploit code for the recently-patched animated cursor (.ani) vulnerability.
|Photo Gallery: Catch a glimpse of the animated cursor exploit in action. The image gallery includes screenshots of rigged sites and an exploit timeline that shows the rapid escalation of the attacks.|
The Asus.com hijack was first reported on Dynamoo's Blog and verified by Kaspersky Lab's Roel Schouwenberg.
Asustek Computer, a well-known mother board manufacturer, also produces cell phones, desktop and notebook computers, graphics cards, optical drives, servers, and networking devices.
This is not the first malware-related site breach affecting Asus.com. Last December, the site was launching drive-by downloads of password-stealing spyware programs on unsuspecting surfers.
Asustek officials could not be reached for comment.