Preserve headers/logos underneath 125 pixels high. It takes up beneficial viewing space, primarily for laptop users, that is ideal left for the good stuff to appear"above the fold" Take a cue from the massive businesses, straightforward logos completed nicely say it all. This is our #1 pet peeve - screaming logos and headers!
fix hacked wordpress database will tell you that there's no htaccess in the wp-admin/ directory. You may put a.htaccess file if you desire, and you can use it to control access to the wp-admin directory or address range. Details of how to do this are available on the internet.
Protect your login credentials - Don't keep your login credentials where they might be found by a hacker. Store them off, and even offline. Roboform is for protecting them good , published here too. Food for thought!
You should also click for info place the"Anyone Can Register" in Settings/General to away, and you should have some sort of spam plugin. Akismet is the one I use, the old standby, but there are lots of them nowadays.
Black and whitelists phrases based on which field they look inside, in a page request. (unknown/numeric parameters vs. known post bodies, comment bodies, etc.).
Implementing all of the above will take less than an hour to complete, while creating your WordPress website much more immune to intrusions. Over 1 million WordPress websites were last year, largely due to preventable safety gaps. Have yourself prepared and you're likely to be on the safe side.