Finally, repair hacked wordpress site will tell you that there is no htaccess from the directory. You may put a.htaccess file within this directory if you desire, and you can use it to control access to the wp-admin directory from IP address or address range. Details of how to do that are available on the net.
It all will start with the basics. Attempt to use complex passwords. Use special characters, numbers, letters, and spaces and combine them to create a unique password. You can use usernames that are not obvious.
This is very handy plugin, protecting you against brute-force password-crack attacks. It keeps track of the IP address of home every failed login attempt. You can configure the plugin to disable login attempts for a range of IP addresses when a certain number of failed attempts is reached.
Upgrade now, if you aren't currently running the latest version of WordPress. Similar to maintaining your door unlocked when you leave for vacation leaving your Go Here website in an old version is.
Oh . And incidentally, I was talking about plugins. Make sure it's a safe one, when you get a plugin. Do not install any plugin simply because the owner is saying on his site that plugin will help you do this or that. Use get a software engineer to analyze it carefully, or perhaps a test site to look at the my link plugin. This way isn't a threat for your business or you.