Backing up your site regularly also helps in procuring from fix wordpress malware attack hackers. You must keep a copy of your files hide away in system so you can be certain of your database. This makes you a protected backup files that serves you in times of down that is unexpected is the machine. Hackers are less likely to slip from a bonded back up system.
It will all start with the basics. Try to use complex passwords. Use letters, numbers, special characters, and spaces and combine them to make a special password. You can use usernames that are not obvious.
Keep control of your assets that are online - Nothing is worse than having your livelihood in someone else's hands. Why take chances with something as important as your website?
Can you view that folder, Imagine if you visit WP-Content/plugins? If so, upload that blank Index.html file into that folder as well so people can't view what plugins site here you have. Because if your version of WordPress is up to date, if you are using a plugin or an old plugin using a security hole, then someone can use this to get access.
Oh . And incidentally, I talked about plugins. When you get a plugin, make sure it's a secure one. Do not install any plugin just because the owner is saying on his site that plugin will allow you to do that or this. Use a test site to look at the plugin, or perhaps get a software engineer to examine it carefully. This way you'll know it isn't my latest blog post a threat for you or your business.