There are millions of blogs. Money is being made by some people through it and some do not. Most of the bloggers use WordPress at the moment. You need to make sure that your blog is protected.
The fix wordpress malware Codex has an outline of what permissions are okay. File and directory permissions can be changed via an FTP client or within the page from the web host.
Truth is, if your site is targeted by a capable master of the script, there is no way to stop an intrusion. What you are about to read below are a few measures you can take to quickly minimize the risk to an acceptable level. Chances are a hacker would prefer picking simpler victim, directory another if your WordPress site is protected.
Luckily, keeping your WordPress website up-to-date is one of the easiest things you can do. For the last few versions, the ability to set up automatic updates has been included by WordPress. A new upgrade becomes available.
Along with adding a secret my site key to your wp-config.php document, also consider altering your user password to something that is strong and unique. A great idea is to avoid phrases, use letters, and include amounts, although you will be told the strength of your password by wordPress. It's also a good idea to change your password frequently - say once.
However, I advise that you install the Login LockDown plugin rather than any.htaccess controls. Login requests will be ceased by that from being permitted from a specific IP-ADDRESS for an hour or so after three failed login attempts. You can still access your mobile while from your workplace, and yet you have protection against hackers, if you accomplish this.