As you are now aware, there are hackers out there who don't want your data or website to be taken down or destroyed.
Our mission is to create a level of security for your website secured by hackers, against hackers.
Here are some reasons a hacker would try to exploit your web site:

-Financial Gain (unlikely for your specific web site): a hacker will exploit scripts installed on your webserver to gain access to financial data for you and customers.

-User database: Using exploitation methods, a hacker can get the database of users from your server. This database includes all the information the user signed up with, including email and password. A hacker could then use these to cross reference other web sites with the same information, and thus "hack" one or more of your website's users for more information.

-Server vulnerabilities: the attacker may not specifically be targeting YOUR website, but the server that your website is hosted on. This server generally contains many more clients than yourself, and all of their user's information as well as crucial datacenter information , how the hacker knows how to plan his next attack is based on this information. He/she could then exploit the datacenter, and use the computers in it for a "bot net", which is a cluster of network enabled computers the hacker will use in future attacks.

-Because they can.

Preventing hacks is not just beneficial to you, it's beneficial to anyone on your web server. Some web hosts will give discounts to customers who have their site regularly checked by experts for vulnerabilities.

Now, your site has not been compromised, nor has any of your crucial data. A simple injection was used to exploit one of wordpress' normal functions, in doing so your admin password was reset without my prior knowledge of the login information.

This has been done for 2 reasons. One being that it is our personal goal to secure your web presence, the other to test a vulnerability.
We apologize for an inconvenience this may have caused you. We do not wish for you to be unhappy with our presence!

In the future, if you would like for us to consistently test your website for vulnerabilities to tell you how to repair them, we can do so for a consultation fee. We do not expect one for the initial exploitation, and will be completely content in never touching your web server again if you wish for us to do so. Please contact sponge@codetribe.org for information on how to secure your website.

Hope this post has been all sorts of informative!
-Sp0nge & The Brotherhood of Eternal Love

P.S. – I am not the first person to gain access to this server. Another hacker has a shell script in place that allows them to control your entire web server. I can fix this, and prevent it from happening in the future.