You weren't being logged out by hackers - you were being logged out just like the rest of us due to changes made in the server to fight against the DoS attacks. DPR made an announcement about it, and it continued to occur for me even as recently as yesterday. The 3-character captcha is nothing to worry about - it has happened before and even though it doesn't "work" it's not dangerous. All you need to do is refresh the page and it should give you a normal length captcha. The issues you have with privnote and your mail have nothing to do with SR. There is no hijacker or hacker or operation going on - the people who were locked out of their accounts were locked out because they provided their login details and PIN to a phishing site.