I don't know about you, but I researched to find out what others were doing to maintain their blog secure, and when I first secured my WordPress blog, I found information that I was confused. And some of the data was actually on the top or superstitious. People told me to rename this file, rename this folder and install these ten plugins. It appeared to be a bit of work and effort.
Finally, repair hacked wordpress site will tell you that there's no htaccess from the directory. You can put a.htaccess file into this directory if you desire, and you can use it to control access to the directory or address range. Details of how to do that are easily available on the internet.
Use strong passwords - see this page Do your best to use a strong password, alpha-numeric, with upper and lower case and special characters. Easy to remember passwords are also easy to guess!
A snap to move - If, for some reason, you want to relocate your website, like a domain name change or a new web host, having your files at your fingertips can save you oodles of time, hassle, and the demand for tech help.
Make a note of your new password! I suggest the version of the secure software *Roboform* to remember your passwords.
Change your WordPress admin and password username, or at least your password and collect and use other fantastic WordPress security tips to keep hackers out!