FYI I don't know if anyone else has seen this but today I had a client advise that visitors to a site was getting a Malware alert from Google for a site called Blogio.net.
I checked and then contacted the hosting company to ensure that the rest of the server was not infected and they confirmed that the plugin was infected the link was blogio.net/blog/wp-ad-plugin.
Seems the site is a source of malware according to the message I have from Google. Checking the plug-in using the editor I noted the bad link showing up as the URI and also later in the text. I have deleted the plugin from the site. Has anyone else seen this? What methods can be employed to guard against infected plug-ins? What's some best practices?