If you do not have good protection on your website Documents can easily get lost. A few of those files might be saved on your computer and easily replaceable, but what about the rest of them? If you lose the first time to them, where are you going to get them out of again? Especially clean hacked wordpress site is vital. Long-term sites have made a number of files and have a lot of data. Recreating that all are a nightmare, and not something any business owner would like to do.
An easy way to maintain WordPress safe is to use a few built-in tools. First of all, view it now do not allow people run a web host security scan, to list the files in your folders and automatically backup your web hosting account.
This is quite handy plugin, protecting you against brute-force password-crack strikes. It keeps track of the IP address of every failed login attempt. You can configure the plugin to disable login attempts when a certain number of attempts is reached.
What if you visit WP-Content/plugins, can you see that folder? If so, upload this blank Index.html file inside that folder as well so people Extra resources can't see what plugins you have. Someone can use this to get access because even if your existing version of WordPress is current, if you are using a plugin or an old plugin with a security hole.
Just make sure you decide on a plugin that is up to date with release check my site and the current version of WordPress, and which you may schedule, restore and clone.