I just got hacked today. Some guys managed to change my admin email and requested a new password through the lost password function.
(Coming from this site:http://www.is-sw.net/vb/showthread.php?p=29642)
I don't know which vulnerability were they exploiting, although it would be nice to know (suggestion on what to look for? previous to the login.php, my log file looks ok).
Do you have advice on how to protect my WordPress from future attacks? (This guys were just having fun, I think)