Installing the fix hacked wordpress site Scan plugin alert you that you might have missed, and will check all this for you. Additionally, it will tell you that a user named"admin" exists. Needless to say, that is your user name. If you desire, you can follow a link and find instructions for changing that name. Personally, I think that a password is good security, and there have been no attacks on the blogs that I run, since I followed those steps.
Protect your login credentials - Do not keep your login credentials where a hacker could locate them. Store them off, and even offline. Roboform is very good for protecting them, also. Food for thought!
There's a section of config-sample.php that is headed"Authentication Unique Keys." There are four definitions which appear within the block. There's a hyperlink inside that part of code. You want to enter that link in your browser, copy the contents that you get back, and replace the keys you have with the unique, pseudo-random keys provided by the website. This makes it harder for attackers to automatically create a"logged-in" cookie for your website.
In addition to adding a secret key to your wp-config.php file, also consider altering your user password into something that is strong and unique. WordPress will tell you the strength of your password, but see post a great tip is to avoid common phrases, use upper and lowercase letters, and include amounts. It's also a good idea to change your password frequently - say once every six months.
But realize that security is. additional hints Don't just be the reactive type, consider steps to begin today protecting yourself. Do not let Joe the Hacker make your life miserable and turn everything in creating come crashing down in a matter of seconds, that right here you've worked hard.