Well last night I found out I had been hacked. Some anal abscess of a semi-human decided to inject a phishing page on my domain. A nice person (Canadian, natch) e-mailed me to tell me. He actually looked at my domain and decided that it didn’t seem the home of some Russian troglodyte, so figured I’d been hacked. I was able to go to my host and excise the phishing page, as well as at least some code that was allowing them to inject files into my WordPress install. The good news is that Google is no longer flagging my site as malware. And thanks to all the people who reported back my site as legit, you probably speeded that process up.
Unfortunately, as far as technical help goes, my web host was only interested in upselling me on security packages that cost three times my hosting cost. (or more) I may be moving web hosts. I’m also probably going to rebuild my site in the near future as I no longer quite trust this install. *glares at WordPress*