From ZDNet

Security researchers warned Web surfers on Thursday to be on guard after uncovering evidence that widespread Web server compromises have turned corporate home pages into points of digital infection

The attack works by exploiting a known vulnerability in Microsofts’ IIS to hijack web sites, redirecting visitors to a Russian server which downloads software onto their PCs. That software can be used by a remote attacker to control those computers.

Not suprisingly, Microsoft has yet to patch the latest in a long line of Security flaws in its sieve-like software. Meanwhile, Firefox is still running infection, spyware, adware and popup free on my PC.