A malware capable of infecting websites through a mechanism that is technically termed as "SQL Injections" has been identified by Websense, who have also named the offending piece of software as "Lizamoon".
According to Websense Security Labs, in a report published on eWeek recently, over half-a-million websites are estimated to be infected by Lizamoon. Although Websense has detected similar malwares in the past, the spreading of Lizamoon had been a significant concern and prompted a warning for unsuspecting online users who may become easy victims. Websense cautions that Lizamoon eventually tries to scam users into buying a software.
http://www.fraud-news.com/content.php/356-Malicious-Attack-on-Websites-by-Lizamoon