Do you have your administrative back end also secured behind a protected directory on the server?
I run Linux on all my sites and I create a very obscure directory name and I place all my admin tools behind the protected directory in addition to placing Security Assist on those pages. It does create (2) levels of security, but the admin pages need that extra level.
My gut tells me your might be a victim of a Keylogger (malware) attack.