I received email notice of a new user being added. As this was unauthorized, I quickly accessed my WordPress account, confirmed the email was correct, and deleted the user. I did so so quickly that I did not notice what privileges / role was assigned.
Has my site been hacked? Recommendations for ensuring this matter is taken care of - and action steps to take to prevent it from happening again are welcomed.
The blog I need help with is vineyardcounselingtendrils.wordpress.com.