Any site can be hacked if enough time and effort are put in. Therefore, your site security also needs to address the need to backup your site to be able to recreate it.
To remove your site from what hackers consider "Low Hanging Fruit" do the following:
No usernames should be admin and no passwords should be similar to the site name or have dates associated with you personally.
Keep Wordpress, your plugins and your theme updated to the newest versions.
Turn off comments completely. This is optional but strictly for site security, it is preferable.
Be sure you are backing up your site frequently as well.
|