Finally, fix wordpress malware plugin will tell you that there's not any htaccess from the directory. You may put a.htaccess file if you desire, and you can use it to control access by IP address to the directory or address range. Details of how to do this are readily available on the internet.
If you're among the ones that are proactive, I might find it a little harder to crack your password. But if you're among the responsive ones, I might get you.
I don't think there is a person out there that after learning how much of a problem WordPress hacking is that it is a good idea to boost the safety of their blogs. However, something I've noticed over the years is that when it comes to securing their sites, bloggers seem to be stuck in this state.
Black and pathological-looking phrases that were whitelists based on which field they look within, in a page request. (unknown/numeric parameters vs. known article bodies, comment bodies, etc.).
However, I advise that you you could look here install the Login LockDown plugin in place of any.htaccess controls. Login requests will stop from being permitted after three unsuccessful login attempts from a specific IP address for one hour. You may still access your admin panel whilst away from your office, and yet you have protection against hackers, if you do that.