Last year and a half taught us that WordPress security shouldn't be taken lightly by any means. Between 15% and 20% of the world's high traffic sites are powered by WordPress. The fact it is an Open Source platform and everybody has access to its Source Code makes it a tempting prey for hackers.
The fix malware problems free Codex has an outline of what permissions are okay. Directory and file permissions can be changed either through an FTP client or within the page from the web host.
Hackers don't have the power once you got these lined up for your own security to come to a WordPress blog. You definitely can have a WordPress account especially that one that gives you big bucks from affiliate marketing.
You should also place the"Anyone Can Register" in Settings/General to away, and you ought to have some sort of spam plugin. Akismet is the one read morecheck my site I use, the old standby, but there are many of them these days.
Now it's time to sign up for a Facebook accounts that is new and use this person's name and identity. After I get it all set up, I'll be telling you posing as your friend and asking you to be friends with me on Facebook (or Twitter, or whichever societal site).
Do your homework and some hunting, but if you're pressed for time and need to get this try the WordPress safety plugin that I use. It's a relief to know that my website (and company!) are secure.