Friday, Apple released an update to its mobile operating system (iOS 4.3.4) which patches a couple of vulnerabilities that left a door open for malware infections on the iPad, 3rd and 4th generation iPod touch, iPhone 4, and iPhone 3GS.
Apple's update describes the CoreGraphics vulnerability as "A buffer overflow…in FreeType's handling of TrueType fonts. Viewing a maliciously crafted PDF file may lead to an unexpected application termination or arbitrary code execution."
[...]
This update comes on the heels of an alert from German IT group BSI, which warned of an unpatched vulnerability that would "allow attackers to gain access to the entire system with administrative privileges."
Apple does "verify" any software for their App Stores, but developers have been known to sneak in features without Apple's testers seeing them, so don't expect this to entirely protect you.
Okay, I think I've tracked this one down. It isn't a problem with your iPod or iPad, it's a problem with the router itself. Its DNS has been overwritten so that it randomly (about 5% of the time) will redirect you to one of their sites.
Because you're using someone else's open access point, there really isn't anything that you can do about it except to stop using that particular router.
Best Answer
Yes, security vulnerabilities that would allow people to hack or infect Macs and iOS products do exist, though they're not exploited very often.
Pwn2Own is an annual contest where competitors try to hack into machines to win them as prizes. Both Macs and iOS products are hacked most years.
Here is one more story about an exploit that was patched:
Apple does "verify" any software for their App Stores, but developers have been known to sneak in features without Apple's testers seeing them, so don't expect this to entirely protect you.