One of the first things you do when you set up a WordPress site is work on the colours. It's time to add information and text. But what about WordPress security? Don't let the fun of setting a site up distract you from the objective of protecting the information you're putting online.
I back up my blogs frequently using a plugin WP DB Backup. I can always restore my blog to the last 13, if anything happens. I use my blog to be scanned by WP Security Scan plugin regularly and WordPress Firewall to block suspicious-looking asks to fix wordpress malware.
This is great news because it means that there's a community of users and developers that can further enhance the platform. Whenever there is a group there'll always be people who will try to take them down.
Yes, you need to do regular backups of your website. I recommend at least a weekly database backup and a monthly "full" backup. More. If you make additions and changes definitely more. If you have a community of people which are in there all the time, or make changes multiple times a day, a daily backup should be a minimum.
You can make a firewall that blocks hackers. The firewall prevents the hacker. You also have to have version of Apache. Upgrade your PHP. It's essential that your system is full of upgrades.
Do click for source not use wp_ as a prefix for your own databases. Web hosting providers are currently eliminating that default but if yours does not, adjust wp_ to anything but that.