Last year and a half educated us that WordPress security shouldn't be taken lightly by any means. Between 15% and 20% of the planet's high traffic websites are powered by WordPress. The fact that it is an Open Source platform and everyone has access to its Source Code makes it a prey for hackers.
In my opinion, the best way to make sure that your that is fix hacked wordpress is via using a WordPress backup plugin. This is a relatively inexpensive, elegant and easy to use way to make sure that your website is available to you.
Strong passwords - Do what you can to use a strong password, alpha-numeric. Easy to remember passwords are easy to guess!
Luckily, keeping your WordPress website up-to-date is one of the easiest things you can do. For the past couple of versions, WordPress has included the ability to set up automatic updates. A new update becomes available.
Can you see that folder, Imagine if you go to WP-Content/plugins? If so, upload that blank Index.html file inside that folder as well so people can't view what plugins you might have. Someone can use this to get access because even if your current More about the author version of WordPress is up to date, if you're using a plugin or an old plugin using a security hole.
Implementing all the above will take less than an hour to finish, while making your WordPress website more immune to intrusions. Over 1 million WordPress sites were cracked this past year, largely due to preventable safety gaps. Have yourself prepared and you are likely to be on the safe side.