Last year and a half educated us that WordPress security shouldn't be taken lightly by any means. Between 15% and 20% of the planet's high traffic websites are powered by WordPress. The fact that it is an Open Source platform and everyone has access to its Source Code makes it a tempting prey for hackers.
Install the repair hacked wordpress site Firewall Plugin. This plugin investigates requests that are net to recognize and quit obvious attacks.
Hackers do not have the power when you got all these lined up for your own security to come to a WordPress blog. You can have a WordPress account which provides big bucks from affiliate marketing to you.
Recently, an unknown hacker murdered the site of Reuters and posted a fake news article. Since Reuters is a popular news website, their reputation is already ruined because of what the hacker did. The same thing may happen to you if you do not pay attention.
Can you see that folder, what if you go to WP-Content/plugins? If so, upload this blank Index.html file inside that folder as well so people can't view what plugins you have. Someone can use that to get access because even if your version of WordPress is up to date, if you are using a plugin or an old plugin with a security hole.
However, I recommend that you set up the Login LockDown plugin in place of any.htaccess i thought about this controls. Login requests will stop from being permitted from a specific IP address for one hour. You can still access your panel whilst away from your office, and yet you still have good protection against hackers if you do that.