It was announced today by the FreeBSD Security Team that on 11 November there were two machines as part of the FreeBSD.org hosting infrastructure that were compromised. Various services have been taken offline as a precaution. The penetration occurred via a leaked SSH key but there's no signs of damage taking place.
Information on the security compromise is still forthcoming. What's been shared so far is stated in this news message.