There are millions of blogs all around the Internet. Some people are making money through it and some don't. Many of the bloggers use WordPress at the moment. No matter what sort of person you are, you will need to make certain that your blog is secure.
Ultimately, fix wordpress malware plugin will inform you that there's not any htaccess within the directory. You may put a.htaccess record in to this directory if you would like, and you can use it to handle this wp-admin directory by Ip Address address or address range. Details of how you can do that are plentiful around the net.
Don't make the mistake of believing that your hosting company will have your back so far as WordPress backups go. Not always. It's been my experience that the hosting company may or may not be doing proper backups, while they say they do. Take that kind of chance?
Yes, you want to do regular backups of your site. I recommend at least a weekly database backup and a monthly "full" backup. More, if at all possible. Definitely more if you make regular additions and changes to your website. Source If you make changes multiple times a day, or have a community of people that are in there all the time, a backup should be a minimum.
What's the best way? Out of all the possible choices that are available today, which one is right for you and which route should you choose?
Always keep in mind that the safety of your blogs depend on how you manage them. Be certain that you follow these strategies that are simple to check this prevent hacks and exploits on your blogs and websites.