Finally, installing the fix hacked wordpress database Scan plugin alert you to anything that you might have missed, and will check most of this for you. Additionally, it will tell you that a user named"admin" exists. That is the administrative user name. You find directions for changing that title, if you desire and can follow a link. I believe that a strong password is good protection, and since I followed those steps, there have been no attacks on the sites that I run.
The stronger approach, and the one I recommend, is to use one of the generation and storage plugins available on your browser. RoboForm is liked by many people, but I believe after a free trial period, you have to pay for it. I use the free version of Lastpass, and I recommend it for those of you who use Internet Explorer or Firefox. More hints That will generate secure passwords for you; then you use one master password to log in.
Is to delete the default administrator account. This is critical because if you do not do it, a user name which they could attempt to crack is already known by malicious user.
In addition to adding a secret key to your wp-config.php file, also think about altering your user password into something that is strong and unique. WordPress will tell you the strength of your password, but include amounts, use letters, and a great tip is to avoid common phrases. It's also a good idea to change your password regularly - say once.
Of course it's possible to set up plugins to make your store more user-friendly like backup plugin or share buttons. That's all. Your shop is now up and running!