One of the first things you do when you set up a WordPress site is work on the colors. Then it's time to add text and information. But what about WordPress security? Don't allow the fun of setting a site up distract you you're putting online.
My first step is not one you must take but I was helped by it. I had a good old fashion pity party. I cried and railed against the evil hackers (that where probably 13 and smarter then me.) And then I did what I should have done before I started my site. And here is where I would like you to start as well. Learn hacked. The thing about fix hacked wordpress site and why so many of us recommend it is because it is really easy to learn. Unfortunately, that can also be a detriment to the health site of our sites. We need to learn how to add a safety fence.
Safeguard your login credentials - Do not keep your login credentials where they might be found by a hacker. Store them offsite, and even Your Domain Name offline. Roboform is for protecting them very good . Food for thought!
Yes, you need to do regular backups of your site. I recommend at least a weekly database backup and a monthly "full" backup. More, if at all possible. Definitely more if you make changes and additions to your site. If you have a community of people that are in there all the time, or make changes multiple times every day, a backup should be a minimum.
It's really sexy to fan the flames of fear. That is what journalists and bloggers and politicians and public figures mostly do. It's terrific for readership and it brings money into the war chests. Balderdash.
But realize that online security is. Do not only be the type, consider steps to begin today protecting yourself. Don't let Joe the Hacker make your life miserable and turn everything in creating come crashing down in a matter of moments that you've worked so hard.