I just found this article which says it was the Marin County Transportation Authority site that prompted the shutdown.

http://www.scmagazineus.com/Hack.../article/35918/
suzi | Homepage | 10.03.07 - 11:14 pm | #

I don't agree with this:

David Perry, global director of security education at Trend Micro, told SCMagazineUS.com today that the hacker may have embedded a malicious IFRAME or exploited a vulnerable ActiveX control to redirect traffic.

But it does not appear he was looking to profit off the attack, Perry said.

"This seems more like a vandal to me," he said. "It's kind of old school. What we're seeing these days is mostly crimeware. This looks like something from 1998, not something from 2007."

The porn sites we installing malware!
suzi | Homepage | 10.03.07 - 11:21 pm | #