Twice this week I have shot over to my blog to find that the main index.php file had been changed and instead of my blog showing up I get a bunch of crazy nonsense about turkish hackers. The first time I simply uploaded a fresh copy of index.php and it worked fine. The second time my password had been changed to a random string of numbers in wp-config.php. I set it back to normal and now things are fine. Any idea how they keep changing my files? I don't know that this is an issue with wordpress per say. It could well be that I'm leaving something exposed somewhere else (file permissions, for example). Thanks in advance.