It's also important to change admin username and your password if you are helped by someone and needs admin username and your password to login to do the job. After all of the work is complete, IMMEDIATELY change your password and admin username. Someone in their business may not be if the person is trustworthy. Better to be safe than sorry!
The rename your login url to secure your wordpress website Codex has an outline of what permissions are okay. File and directory permissions can be changed via an FTP client or within the administrative page from the hosting company.
Well, we are talking about WordPress but what's the sense if your computer is at risk of hackers of performing security checks and upgrades. There are files that can encrypt key loggers on your computer. When this happens they can easily access everything that you type on your computer. You can find a good deal of antivirus programs that are good online. Look for a credible antivirus program or ask experts.
Keep control of your online assets - Nothing is worse than getting your livelihood in the hands of somebody else. Why take chances with something as important as your site?
Install the WordPress Firewall Plugin. This plugin investigates web requests with WordPress-specific heuristics that about his are simple to identify and stop attacks that are obvious.
There is another problem you have with WordPress. People know where they can login and additionally they could just drop by with your login form and try outside a different combination of passwords and user accounts. In order to stop this from happening you need to set up Login Lockdown. It's a plugin that allows users to attempt to login with a wrong password three times. Following that the IP address will be banned from the server for a specific amount of time.