Anyhow, this was on the Register site, in case anyone is interested.
"The SQL injection attacks started in late November and appear to be the
work of a relatively new malware gang, said Mary Landesman, a researcher
with ScanSafe, a web security firm recently acquired by Cisco Systems.
Hacked sites contain an invisible iframe that silently redirects users to
318x .com (a space has been added to protect the clueless), which goes on to
exploit known vulnerabilities in at least five applications."
The article is at the link below or just go to www.theregister.co.uk .
http://www.theregister.co.uk/2009/12/10/mass_web_attack/
Buffalo