Finally, fix malware problem will tell you that there is no htaccess from the wp-admin/ directory. You can put a.htaccess file if you desire, and you can use it to control access by IP address to the wp-admin directory or address range. Details of how to do that are available on the internet.
The more powerful approach, and the one I recommend, is to use one of the password creation and storage plugins available for your browser. Lots of people like RoboForm, but I think after a trial period, you need to pay for it. I use the free version of Lastpass, and I recommend it for those who use Internet Explorer or Firefox. That will generate secure passwords for you; you use one master password to log in.
First in line is creating a smarter password to your account. Passwords must be made with characters and numbers. You can combine them and create small shifted letters. Smarter passwords can be your gateway to zero hackers. Make passwords that only you can think of.
WordPress is one of the most popular platforms for websites and blogs. While WordPress is pretty secure from the box, there are always going to be individuals who want to create trouble This Site by finding a way to crack into sites or accounts to cause harm or inject hidden spammy links. That is why it's essential to make certain that your WordPress installation is as secure as possible.
Do your homework and some searching, but if you are pressed for time and want to get this try out the WordPress security plugin that I use. It is a relief to know that my website (and business!) are secure.