A few minutes ago I discovered that an extra post had been added to my WordPress blog by 'admin' yesterday evening, titled "1" with viagra spam as content. But even worse was that the content of my most recent post, which I had posted as 'admin', had also been replaced by this spam.
Has anyone any idea of what is happening here? Have I been hacked, or is someone maybe exploiting the "Post via e-mail" function? (which I have disabled now, just in case)