As of today, WordPress is powering 48 of the top blogs on the Internet. Apart from this, WP is powering 19 percent of the net as a whole. It means that a lot of people actually trust WordPress whenever they want creation of websites and blogs.
Since scare tactics seem to be at the very least start thinking about the issue, or what drives some people to take secure your wordpress site a little more seriously, allow me to shoot a few scare tactics your way.
Strong passwords - Do what you can to use a password, alpha-numeric, with upper and lower case and special characters. Easy to remember passwords are easy to guess!
Move your wp-config.php file one directory up from the WordPress root. WordPress will search for it if it can't be found in the main directory. Also, nobody else will have the ability to read the document unless they've SSH or FTP access to your server.
Install the WordPress Firewall Plugin. This plugin investigates web requests with easy WordPress-specific heuristics to recognize and prevent attacks.
But realize that security is. Do not just be the reactive type, take steps to start protecting yourself. Do not let Joe the Hacker make your helpful site life miserable and turn all in creating come crashing down in a matter of seconds that you've worked so hard.