I back up my blogs using a plugin WP DB Backup. I will always restore my website if anything happens. I use WP Security Scan plugin that is free to scan my site frequently and WordPress Firewall Read Full Article to block suspicious-looking asks to fix malware problems free.
Strong passwords - Do your best to use a strong password, alpha-numeric. Easy to remember passwords are also easy to guess!
Move your wp-config.php file up one directory from the WordPress root. WordPress will look for it if it cannot be found in the root directory. Additionally, nobody will be able to read the document unless they have FTP or SSH access to your server.
What's the best way? Out of all of the choices that are available today, which one is appropriate for you and which route should you choose?
Change your password, frequently, or your WordPress admin and password username and collect and utilize other good WordPress safety tips to keep hackers out!