Just saw on the BBC website that Wordpress installations were being targeted by a botnet yesterday. Haven't seen it posted on here yet so thought I would give you a heads up as obviously a lot of affiliate sites are run on the platform - it's targeting any "admin" usernames so they've recommended changing any admin usernames and increasing password strength. Hope it didn't affect anyone so far.