In late January 2012 and earlier this month, hundreds and perhaps thousands of ===> WordPress-based domains <===were compromised in a series of automated attacks. Though there was no official number given, the reason for the compromises has made itself known. They are being used as the final stage in a spam run, likely from the Cutwail botnet, to spread malware.
Exploit kits are looking to serve the Cridex Trojan, which harvests information such as cookies, FTP credentials and email accounts.