By default, the newest version of WordPress is pretty secure. Anything that might have been added to some fix malware problem plugins has been considered by the development team of WordPress . In the past , WordPress did have holes but now most of them are filled up.
Also, don't make the mistake of believing that your web host will have your back as far as WordPress copies go. Not always. While they say they do, it's been my experience that the company may or may not be doing proper click for info backups. Take that kind of chance?
Move your wp-config.php file one directory up click here now from the WordPress root. WordPress will look for it there if it cannot be found in the root directory. Also, nobody will have the ability to read the document unless they've SSH or FTP access to your server.
You can also create a firewall that blocks hackers. From coming to your own files, the hacker is prevented by the firewall. You also have to have updated version of Apache. Upgrade your PHP. It's essential that your system is filled with upgrades.
I prefer using a WordPress plugin to get the job done. Make sure is in a position to do backups, has restore performance, and can clone. Be sure that it is often updated to keep pace with all new versions of WordPress. There is not any use try this in backing your data up to a plugin that's out of date, and not functioning.