Hijack THIS!
Recently, all of Saw-Red.com and Hidden Melody was hijacked by somebody with malicious intent. The only thing that happened was that the person injected escaped Javascript code in the bottom of major pages (for me, it was /index.php and /wordpress/index.php), and for Erik, my host, his main page was completely hijacked (as far as I know) with a “Symantec” message, and after a second it used HTTP-EQUIV=”REFRESH” to send you directly to what seems to be the Symantec LiveUpdate site.
For me, everything is fixed. I just replaced all of my Wordpress files to make sure that I got rid of all of the nasty code. :p