This morning, I got rooted. Looks like they got in through tikiwiki (I was running version 1.9.7). See here: http://blogs.techrepublic.com.com/security/?p=324
*** This bug has been marked as a duplicate of bug 195503 ***