Comment on Beware New WordPress Security Theat: The WordPress Misinformation Virus by Patrick.
One common misconception I see all the time is the practice of removing your WP version from the source code, which is about as useful as a chocolate teapot.
An automated attack doesn’t scan the code of your site to see which WP version you are using, it just tries all known exploits. Even with the version number removed there are still plenty of ways to tell which WP version is being used, so in the end you are just blocking other web designers from seeing the WP version.
And why hide it unless you are using an outdated/vulnerable version in the first place?