A half and last year taught us that WordPress security should not be taken lightly by any means. Between 15% and 20% of the world's high traffic sites are powered by WordPress. The fact it is an Open Source platform and everybody has access to its Source Code makes it a prey for hackers.
Finally, how to fix hacked wordpress will even tell you that there's no htaccess from the wp-admin/ directory. You may put a.htaccess file if you wish, and you can use it to control access from IP address to the wp-admin directory or address range. Details of how to do this are readily available on the net.
Use strong passwords - Do what you can to use a strong password, alpha-numeric, with upper and lower case and special characters. Easy to remember passwords are also easy linked here to guess!
You should also set the"Anyone Can Register" in Settings/General to away, and you should have some type of spam plugin. Akismet is the old standby, the one I use, but there are lots of them nowadays.
Now it's time to sign up this hyperlink for a Facebook account and use identity and see here this individual's name. Once I get it all set up, I'll be telling you posing as your friend and asking you to be friends with me on Facebook (or Twitter, or whichever societal site).
Free software: If you have installed free scripts such as Wordpress, search Google for'wordpress security'. You will get many tips on the best way to make your WP blog secure.