You may well have heard all the buzz online about the attacks on WordPress security. Unfortunately this is no joke, and it needs to be taken very seriously, or all you've built could be hijacked or worse, lost to you.
Ultimately, fix wordpress malware cleanup will inform you that there is not any htaccess within the directory. You can place a.htaccess record into this directory if you want, and you can use it to handle the wp-admin directory from Ip Address address or address range. Details of how you can do this are plentiful around the net.
Strong passwords - Do what you can to use a password, alpha-numeric, with upper and lower case and special characters. Easy to remember passwords are also easy try here to guess!
Move your wp-config.php file up one directory from the WordPress root. WordPress will search for it there if it cannot be found in the root directory. Also, this nobody else will be able to read the file unless they have SSH or FTP access to your server.
You can also create a firewall that blocks hackers. From coming to your own files, the hacker is prevented by the firewall. You must also have updated version of Apache. Upgrade your PHP. It is essential that your system is full of see this here upgrades.
Do your homework and some hunting, but if you're pressed for time and need to get this try out the WordPress safety plugin that I use. It is a relief to know that my website (and business!) are secure.