securi: Mass Infection of IIS ASP sites - robint.us
According to securi via Google searches, there's 114,000 sites that have been hacked in the last day, all pointing to malware hosted at robint.us. "it looks like a SQL injection attack against a third party ad management script." If you can't get into the site itself, hack the third party app that's putting code on these sites too. Clever but not unexpected. Be very critical of the third-party apps you use on your site, including advertisers.