I recommend the following steps to be implemented immediately to secure and to improve performance of your website.
1) Update your WordPress installation to the latest available version. If you have any plugins and themes installed under WordPress, please make sure that you update them to the latest version as well.
2) Password protect the WordPress admin directory (wp-admin) so that it will have an additional protection. You can do that through cPanel > Directory Privacy.