When I went to install Panino via the WPMU Dashboard, one of the sites the dashboard offered was wordpressmonks.com/works/ASCY/. This is not one of my sites. I do not know these people.
I followed up, and wordpressmonks.com have cloned a test version of a site I developed for the organization ASCY (Affiliated Services for Children and Youth). It would appear that as part of that process, they have also gained access to my WPMU-DEV account.
Can you help me out here? This is making me very very uncomfortable.