This article offers some basic tips for securing your WordPress site:
Change your “admin” username — Use a custom name instead of the default “admin”. This prohibits robots from using the admin name and guessing your password.
Use a strong password — Use a combination of letters, numbers, symbols that can’t be guessed. An example would be “#ghBH89”. If managing all your passwords is an issue, consider using a service like LastPass.
Keep your WordPress software updated — Each update includes security patches for potential exploits. The admin dashboard notifies you when an update is available.
Use a WordPress security plugin — There are many security plugins available. iThemes Security and Wordfence are two examples.
Keep your PC clean — Use scanning software regularly. Two popular and free programs are:
The source article written by Rob Cornish can be found here: