Good advice on the security, it's all true.
However, 128 bit WEP with a nice long keyprhase is "breakable", but hardly in real-time by any laptop made. A hacker could be your neighbor or "wardriving" (wandering around with wireless, looking for unsecured networks). Worst case scenario is he records by packet sniffing a significant sample of your homes wireless traffic (a weeks worth or so for 128 bit). Then, if he has a sufficiently powerful computer, or a large networked Linux cluster made up of several cheap/older PC's, and the right software and ability, he might figure out your key in a couple of weeks or perhaps days, then drive back to within range of your house, and then be able to decode your traffic, or sign himself onto your wireless base station and steal bandwidth from you. The NSA could probably break your 128 bit WEP "real time" but I'd hope they were otherwise occupied on more pressing matters.
Rotating your key every couple of weeks/months, and setting up MAC filtering to allow only the burned-in hardware addresses of the wireless cards in your home is probably more than enough for 99% of all users. In reality, the biggest wireless problems are probably in dorms and apartment buildings where everybody is on everybody else's base stations and doesn't even realize it because so few people ever bother to understand the settings or the software beyond the initial plug-n-play defaults.
Someone with that amount of skill probably has better fish to fry than waiting patiently for you to sign onto PayPal and steal your password. If a bad guy was that interested in onesy-twosy identity theft/fraud, he can just go onto Kazaa or other P2P networks and just type in "bank", "stocks", "finance spreadsheet" or "taxes", and because of how many people are utterly clueless that their kids even installed the client, or if they did themselves, how it works, the entire "C: drive" is shared and everybody on earth can scan the whole thing.
For most home needs, the standard for "breakability" is probably not realistically set at the level where a nerd with a homemade supercomputer and a week or two of free time to record you, and another to crack it, can thereoretically get your credit-card number from that porn site you visited.
99% of hacking and intrusions could be stopped if we could just get everyone to implement the flawed and "breakable" security that's readily available, and apply software patches.