WordPress Exploit and Dreamhost
Added : http://trac.wordpress.org/changeset/5570 not a patch but a fix
If you have the last unpatched wordpress 2.2 there is a problem in the xml-rpc module, people if they have a valid username and password can use an SQL Injection exploit. The common usage has been adding hidden links into the template was control of your blog has been lost to the bad guys
Also Dreamhost leaked 3500 FTp username and passwords, so IF you have WP or hosted on dreamhost.
a) Check you source code for hidden links that aren’t your
b) Check the HTaccess file for any odd entries, like a 310 to Bad guys site on you ranking pages
c) Check your robots.txt… yes some idiots thinks it funny to hack you server and block all spiders !!
d) Check for proxy scripts that may have been installed on your server