And another quick upgrade to WordPress 2.8.4 due to a vulnerability in the previous version.
I think I actually experienced attempts to exploit this problem: During the last two days, I received numerous unrequested password reset notifications for the administrator accounts on my blogs.