In the past 6-8 weeks I noticed the server which stores my websites including around 30 wordpress sites, to be running slow, and acting very unusual. And each time I contacted the hosting provider, they claimed everything was fine, and that they did not notice anything.
During the course of 6-8 weeks, the downtime became worse, and still the hosting provider claimed nothing was wrong.
Then, sometime around the weekend of April 12 2013, I noticed I was not able to log into the majority of my wordpress installations, nor was I able to use the password reset feature, it simple was not found. I knew my passwords were correct, but I still was not able to log in.
After several attempts to correct the issue myself by either reinstalling backup files and database, and even creating a new wordpress installation, I realized the solution would not be easy.
It wasnt until I contact a different hosting provider that I was informed of the Mass Brute-force Botnet Attack.
Although the majority of information published says only sites using "admin" as the username were affected, which is not true at all.
NONE of my wordpress installations use admin as the username, and still they were not only hacked, preventing me from logging in, but also from using the lost password function.
It is believed that the attacks are still continuing as we speak.
Also note, it is NOT advisable to use plugins to prevent this sort of attack, it could only make matters worse.
Also, the thing that bothers me the most is the fact that other than one very small paragraph about the attack was noted on the wordpress.org site.
I have to ask,, Why is this critical information not shared via the wordpress site?