Year and a half educated us that WordPress security shouldn't be dismissed by any means. Between 15% and 20% of the world's high traffic websites are powered by WordPress. The fact that it is an Open Source platform and everyone has access to its Source Code makes it a tempting prey for hackers.
I back my blogs using a plugin WP DB Backup up. I can always restore my website to the 13, if anything happens. I use my blog to be scanned by WP Security Scan plugin and WordPress Firewall to block suspicious-looking asks to how to fix hacked wordpress site.
I protect an access to important files on the blog's server by putting an index.html file in the particular directory, that hides the files from public view.
First in line is currently creating a smarter password to your account. Passwords must be image source made with numbers and characters. You create small altered letters and may combine them. Source Smarter passwords can be your gateway to zero hackers. Make passwords that you can consider.
Upgrade, if you're not currently running the latest version of WordPress. Leaving your site on an old version is like keeping your door unlocked when you leave for vacation.
Do your homework and some searching, but if you are pressed for time and want to get this done once Get More Info and for all, try the WordPress safety plugin that I use. It is a relief to know that my website (and company!) are secure.