I am using WordPress 2.0.2 to create a wewbsite for my kid's school.
When I visited the site this morning, there were 3 posts all made under the Admin account - to which only I have access - all with the same text, ending with "u suc i'm a virus". The posts were all posted with about 5 seconds of each other.
I'm aware of spam bots but this is not comments, this is the actual post.
I've renamed xmlrpc.php just in case that was the way in although xmlrpc has been fixed since 1.5.1 3 (hasn' it?). The other option, I suppose, is that my login details were stored by the school computer I used (changed the password just in case) but posting the same message 3 times wouldn't appear to be the work of someone who had logged in.
Just wondered if anyone else had experienced anything similar?