About a week and a half ago our large site got hit by a hacker that found one form that wasn't protected against javascript. He set up a JS redirect on that page to a large directory run located in Russia. Luckily we caught it within a day, removed the redirect and also patched the hole.

Just this morning I did a google search on our sites domain name, and just under the first listing, the page he had put the JS redirect on came up. It appears as though he link spammed that page with several thousand inbound links. Hopefully we caught this issue before Google noticed it, as I've seen mention in this forum of several other sites being delisted due to this same issue.