Navagon: This seems to be a growing problem. Good luck with support.
I doubt it would be brute force (
as so many attempts in such a short amount of time would throw some flags [tiny](if programmed)[/tiny], or a 15 minute delay after 3 failed attempts would slow that to a crawl), so more likely some security hole that isn't obvious... or more likely, being tricked into believing a email/page reference is legit and submitting information. Heh, like a lot of the Myspace hacking and password phishing that went on...
Which reminds me, when i usually enter my password anymore, i doublecheck the path of the site looks right. Same for banks, paypal, and craigslist (
have yet to use it for anything yet though).