The fix wordpress malware fix Codex has an outline of what permissions are okay. Directory and file permissions can be changed either through an FTP client or within the page from your hosting company.
I might find it a little harder to crack description your password, if you're among the ones that are proactive. But if you're one of the ones that are responsive, I might get you.
I don't think there is a person out there that after learning just how much of a problem WordPress hacking is that it's a good idea to enhance the security of their blogs. But something I've noticed through the years is that when it comes to securing their sites, bloggers seem to be stuck in this state that is reactive.
Another step to take to make WordPress more secure is to always upgrade WordPress. The main reason for this is that there also come fixes for old security holes making it essential to update.
Change your password, or your WordPress admin and password username and collect and utilize other WordPress safety tips to keep hackers out!