Web sites get hacked so frequently, probably 50 a day, and if a hacker breaks into a Web site, they can easily change the code on the site, so that when users go to the site they think it's a legitimate Web site, and they will get infected.
There hasn't been a global solution yet to this problem. If hackers can shut down Yahoo!, they can shut down anything they want tomorrow.