Thankfully I was able to backup my wordpress database and changed all the default username to a different one to make it more secured. Just a few minutes ago my main blog was redirected to a different website. I was really worried so I am finding more ways to secure all my sites.
I am done with changing all the default username. Now my next move is to Lock down WordPress admin access with .htaccess, Scan website for hacks, check Google Safe Browsing, and Setup CloudFlare DNS level protection. I will do this one by one and eventually I will share how I do it.
Meanwhile, I will be preparing my post for all my sites and I wish to seek help with my contributor.