By default, the newest version of WordPress is pretty darn secure. The development team of WordPress has considered anything that might have been added to any fix hacked wordpress site plugins. In the past , WordPress did have holes but now most of them are stuffed up.
Protect your login credentials - Do not keep your login credentials where a hacker might find them. Store them offsite, as well as offline. Roboform is for protecting them very good , too. Food for thought!
Maintain control of your assets - Nothing is worse than getting your livelihood in the hands of someone else. Why take chances with something as important as your site?
As I (our untrue Joe the Hacker) understand, people have way too many usernames and passwords to remember. You have got Twitter, Facebook, your online banking, LinkedIn, two site logins, FTP, internet hosting, etc. accounts which all include logins and passwords you will need to remember.
There is. People know where they can login and they linked here could visit with your login form and try outside a different combination of user accounts and passwords. So as to prevent this from happening you need to install Login Lockdown. It's a plugin that only lets users try and login with a wrong password three times. Following that the IP address will be banned from the server for a specific click here to read timeframe.