I back my blogs regularly using a plugin WP DB Backup up. I can always restore my blog if anything happens. I use my blog to be scanned by WP Security Scan free plugin frequently and WordPress Firewall to block suspicious-looking requests to fix wordpress malware virus.
Hackers do not have the power to come to a WordPress blog when you got these lined up for your security. You definitely can have a WordPress account discover this which gives big bucks from affiliate marketing to you.
Yes, you need to do regular backups of your website. I recommend at least a weekly database backup and a monthly "full" backup. More, if possible. Definitely, if you make frequent additions and changes to your site. If you make changes multiple times a day, or have a community of people which are in there all the time, a daily backup should be a minimum.
What if you visit WP-Content/plugins, can you view that folder? If so, upload this blank Index.html file into that folder as well so people can not see what plugins you might have. Web Site Because even if your existing version of WordPress is current, if you are using a plugin or an old plugin with a security hole, then someone can use that to get access.
But realize that online security is. click to investigate Don't just be the type, take steps to start today protecting yourself. Do not let Joe the Hacker make your life miserable and turn all in creating come crashing down in a matter of moments that you've worked so hard.