I back up my blogs using a plugin WP DB Backup. I will restore my website to the 13, if anything happens. I use my blog to be scanned by WP Security Scan plugin frequently and WordPress Firewall to block requests that are suspicious-looking to how to fix hacked wordpress site.
Do not depend on your internet host - Many people depend on their web host to"do all that technical stuff for me", not realizing that sometimes, they do not! Far better to have the responsibility lie rather than from your see here now control.
Recently, the site of Reuters was hacked by an unknown hacker and published a news article that was fake. Due to what the hacker did since Reuters is a popular news website, their reputation is already destroyed. Something similar may happen to you if you do not pay attention on the safety of your WordPress blog.
You can extend the plugin features with premium plugins like: Amazon S3 plugin, Members only plugin, DropShop etc.. So I think webpage this plugin is a good choice and you can use it for free.
However, I recommend that you set up the Login LockDown plugin instead of any.htaccess controls. From being allowed after three failed login attempts from a certain IP address for one hour, login requests will stop. You may get into your admin panel while away from your workplace, and yet you still have great protection against hackers if you do that.