Bad week for MS
Looks like a someone is going after servers running IIS using a specific malicious script to exploit a vulnerability contained within IIS.
It allows for mass SQL injections and reportedly 10s of thousands of sites are already effected.
It looks like a large scale attack.
Too bad someone at Google didn't catch this and give MS 3 days to fix it.