WordPress is the most popular platform for running websites. But, these days, as more and more websites are being formed on WordPress, they are getting prone to malicious codes and online hacks.
Hackers are masters in stealing passwords. Hence, to keep your password(s) unknown, you need to use strong unique passwords as recommended by WordPress.
WordPress websites are mostly attacked through malwares and self-replicating viruses. Also, there are hackers that steal the passwords of your website to gain access to your admin page.
Having your WordPress website protected and safe is very important. You need to regularly scan your website for malware detection and ensure proper firewall installation to combat hacking attacks.