"It would not surprise me in the least, based on what we've seen in the past, to see this exploit loaded [in kits] in the next day or two, a week at the most," he said.
Indeed, FireEye reported finding nine other websites besides the Labor Department's redirecting visitors to the same malicious site. Microsoft issued an alert last Friday notifying customers of the vulnerability. The company has not said when it would release a patch.
"We strongly encourage customers to follow the workarounds listed in the advisory while we continue working on a full update to address this issue," said Dustin Childs, group manager for response communications for Microsoft Trustworthy Computing.
Sign up for MIS Asia eNewsletters.