I fixed the website. Sorry about the down time. As luck would have it, the website was hacked about 3 hours after I left to take my wife and daughter home for Christmas. We were on the road for 14 hours.
Anyway, the website was hacked by some ineffective child in Saudi Arabia. The only thing that was compromised was the front page. No credit card information or personal information is ever stored on the website. All of that is stored on paypal.
Since you're running Joomla, it's more prone for attacks than a regular site. Make sure you're subscribed to the Joomla security mailing list and
update to the latest version the moment it comes out.
I was once attacked like this, it was over a year ago. But now i have left Joomla as it's clunky and too hard for me to handle.
I use WordPress which more customizable & much much more user friendly than Joomla.