fix wordpress malware virus will also tell you that there's not any htaccess in the directory. You can put a.htaccess file if you desire, and you can use it to control access to the directory or address range. Details of how to do this are readily available on the net.
Protect your login credentials - Do not keep your login credentials where they might be found by a hacker. Store them off, and even offline. Roboform is very good for protecting them, also. Food for thought!
Fortunately, keeping your WordPress website up-to-date is one of the easiest things you can do. For the last a knockout post few versions, WordPress has included the ability to set up automatic updates. Not only that, but websites are notified whenever a new update becomes available.
As I (our untrue Joe the Hacker) know, people have way too many usernames and passwords to remember. You have got Twitter, Facebook, your online banking, LinkedIn, two blog logins, FTP, internet hosting, etc. accounts which all include logins and passwords you need to remember.
You do not always think about needing security when your website is new but you do have to protect your investment and yourself. Having a site important source go down and not being able to restore it quickly can mean a loss of consumers who probably won't remember to search for your website later and can't find you. Do not let this happen to you. Back your site up as soon go to this site as you get it started, as the website is operational, and schedule backups for as long. This way, you'll have WordPress security and peace of mind.