In response to the huge botnet attack on wordpress sites I’ve spent today hardening the site.
One of the crucial things I did was enable two-factor authentication for all users using the Google Authenticator. Please, please, please, if you use google, an apple account, or dropbox for anything, go enable two-factor authentication! (And if you use hotmail or anything from microsoft, keep an eye out for their two-factor solution dropping soon).
If you need help with setting up two-factor authentication, just contact me: it provides an incredible amount of protection against stuff like this.
With all this hardening, if you notice anything funky with our pages, let me know. A number of the security fixes we’ve implemented may have broken a plugin or two.