I back my blogs using a free plugin WP DB Backup up. I will always restore my website if anything happens. I use my site to be scanned by WP Security Scan free plugin regularly and WordPress Firewall to block asks to how to fix hacked wordpress.
A simple way is to use a few built-in tools. To begin with, don't allow people to list the files run a web host security scan and automatically backup your entire web hosting account.
Keep your WordPress Installation up to date - One of the simplest and most valuable tasks you can do yourself is to make sure your WordPress installation is updated. WordPress provides a notice on your dashboard to you, so there is really no reason.
Along with adding a secret key to your wp-config.php document, also think about altering your user password to something that's strong and unique. A go good idea is to avoid common phrases, use upper and lowercase letters, and include amounts, although you will be told the strength of your password by wordPress. It's also a good idea to change your password regularly - say once every six months.
I prefer using a WordPress plugin to get the click here for more info job done. Make sure the plugin you choose is in the original source a position to do copies, has restore and can replicate. Also be sure it is frequently updated to keep pace with all versions of WordPress. There is no use in backing your data up to a plugin that is out of date, and not working.