I have had two WordPress blogs hacked into in the past. That was at a time when I was doing very little internet marketing, and until I found time to address the situation (months later), these sites were penalised in the search engines. They were not removed, but the rankings were reduced.
Installing the fix wordpress malware virus Scan plugin alert you to anything that you might have missed, and will check most of this for you. It will also inform you that a user named"admin" exists. That is the administrative user name. If you wish you can follow a link and find instructions for changing that title. I believe that a strong password is protection that is good, and there have been no attacks on the sites that I run because I followed those steps.
I protect an access to important files on the site's server by putting an index.html file in the particular directory, which hides the files out of public view.
Fortunately, keeping your Source WordPress site up-to-date is one of the simplest things you can do. For the past couple of versions, WordPress has included the ability to install updates. Not only that, but sites are notified every time a new update becomes available.
In addition to adding a secret key to your wp-config.php document, also consider changing your user password to something that's strong and unique. A good tip is to avoid phrases, use letters, and include numbers, although wordPress will let you know the strength of your this password. It's also a good idea to change your password frequently - say once every six months.
Change admin username and your WordPress password, or your password and collect and use other WordPress security tips to keep hackers out!