Attackers first scan for the phpMyAdmin login page. Common URLs:

To secure your PHPMyAdmin installation: