I have a wordpress website that hasn't been logged into for awhile, and it appears some auto-update change happened. The wp-admin login screen is now blocked by a basic auth popup. The admin and user credentials we thought were still good are no longer working, and because this pop-up blocks the load of the login page there's no way to reset a password.

Anyone else seen a wordpress update force a basic-auth window to replace the login page? I've seen some notes about fixing it via an .htaccess file but there isn't one in place, so I'm not even sure what caused this change.