With so much at stake, readers who run WordPress sites are strongly advised to lock down their servers immediately. The effort may not only protect the security of the individual site. It could help safeguard the Internet as a whole
There are also indications that once a WordPress installation is infected it's equipped with a backdoor so that attackers can maintain control even after the compromised administrative credentials have been changed.
I read a report on this somewhere that stated the attack was attempting to use the user name Admin and about 1000 common passwords, so I'd assume if you dont use Admin as your administrator, you're probably safe?
Edit: I just opened your article and it says it in there too. Might be the same one that was on Reddit yesterday.
Overall I'm noticing more and more botnets and less and less stability in the internet. A general trend. I think it's time to take a step back and stop pushing for rapid innovation. Focus on what we currently have and make it more secure. And not through complex passwords either. But at a basic kernel level.