It's also important to change your password and admin username if someone will help you and needs admin username and your password to login to do the work. Admin username and your password changes, after all the work is finished. If the person is trustworthy, someone in their business might not be. Better to be safe than sorry!
I back my blogs using a plugin WP DB Backup up. I will always restore my website to the 13, if anything happens. I use WP Security Scan plugin that is free to scan my blog and WordPress Firewall to block asks that are suspicious-looking to fix wordpress malware fix.
Is also significant. You need to backup all the database and files so in case of a sudden attack, you can easily bring back your blog read what he said like nothing.
There is a section of config-sample.php that's headed"Authentication Unique Keys." There are. There's a hyperlink inside that section of code. You want to enter that link in your browser, copy the contents which you return, and then replace the keys you have with the unique, pseudo-random keys provided by the site. This makes it harder for attackers to automatically create a"logged-in" cookie for your site.
Take note of your this hyperlink new password to the next time you sign in! I recommend the paid or free version of the software that is secure *Roboform* to remember your passwords.
However, I advise that you set up the Login LockDown plugin in place of any.htaccess controls. From being allowed after three failed login attempts from a specific IP address for an hour, login requests will stop. You can still access your panel whilst away from your office, and yet you have protection check this site out against hackers if you do that.