Finally, fix hacked wordpress will inform you that there is no htaccess within the directory. You can put a.htaccess record into this directory if you would like, and you can use it to manage usage of the wp-admin directory from Ip Address address or address range. Details of how you can do that are plentiful around the net.
Safeguard your login credentials - Do not keep your login credentials where they might be found by a hacker. Store them offsite, and even offline. Roboform is for protecting them good . link Food for thought!
Yes, you want to do regular backups of your website. I recommend at least a weekly database backup and a monthly "full" backup. More. Definitely, if you make frequent additions and changes to your site. If you make changes multiple times every day, or have a community of people that are in there all the time, a daily backup should be a minimum.
Install the WordPress Firewall Plugin. Stop and this plugin investigates web requests with WordPress-specific heuristics that my website are simple to recognize attacks.
Oh . And incidentally, I was talking about plugins. When you get a plugin, make sure it's a safe one. Do not install try these out any plugin simply because the owner is saying on his website that plugin can allow you to do that or this. Maybe use a test blog to check the plugin, or perhaps get a software engineer to examine it. This way is not a threat for you or your organization.