I rag on wordpress a lot. If you are a word press user You can move your wp-config.php file one folder higher so it will be out of the public's access. WordPress knows how to look for this file. Also, create a new administrator account and name it something besides administrator and give it a strong password. Delete the old default administrator account. This will keep all the basic script kiddies out according to LifeHacker.
You can also stop using wordpress.....just sayin.