Fix affected content but first change your email and password. I would also change your db password (make sure to then update wp-config.php) and make sure all files on your site are set to proper permissions. If using any old plugins check for known security issues. Additionally, change login info on your webhost/server.
You may be able to have your host restore your site to an earlier time prior to the issue including your db.
As Roy noted, Dr. CruZz is apparently defacing sites which means he/she is accessing people’s login information, most presumably by reviewing breached data from other sites that has been published in hacker forums etc. and then the whois registry. To prevent this, never use the same email address used for WP login as you do on other websites for login etc., always use differnent strong passwords for all sites, then lock down your whois information.
Securi does not show your site as infected as of today, of course that does not mean some unknown threat has not been included…
