Have you done anything to protect your WordPress site or is it lying there just like that without any protection and security? Of-course you have that default login/password system but do you honestly think that it is enough? Imagine what will happen if anyone gets access to your admin dashboard.