Better WP Security Question

I just recently started using the Better WP Security plugin and I’m noticing that I’m getting messages in my email that a host was locked out due to too many attempts to access a file that does now exist.

I checked the logs and the 404 errors are for URL’s that have NEVER existed on my blog.

I’ve noticed a feature in the “Detect” tab called “404 intrusion detection”. How could it be possible for someone to hack my site by attempting to access files that don’t or never did exist?