MySQL security help

Help, a friend of mine just informed me that he could connect to my mysql server from his remote machine by using
Port: 3306
HostName: ******
User: root
He also change some info in the database. How can I prevent this?
(I am managing my own server here as a kinda experiment)

 

 

 

 

Top