Preserve headers/logos underneath 125 pixels high. It takes up beneficial viewing space, primarily for laptop users, that is ideal left for the good stuff to appear"above the fold." Take a cue from the massive businesses, straightforward logos completed nicely say it all. This is our #1 pet peeve - screaming logos and headers!
My first step isn't one you must take but it helped me. I had a fantastic old style pity party. I cried and railed against the evil hackers (that where probably 13 and smarter then me.) And I did before I even started my site, what I should have done. And here is where I want you to start as well. Learn hacked. The beautiful thing about fix hacked wordpress and why so many of us recommend because it is easy to learn it is. Unfortunately, that is also a detriment to the health of our websites. We have to learn how to add a security fence.
Is also significant. You need to backup database and all the files you can easily bring back your site like nothing happened.
There's a section of config-sample.php that's headed"Authentication Unique Keys." There are. There's a hyperlink within that section of code. You need to enter that link into your browser, copy the contents which you return, and then replace the keys you have with the unique, pseudo-random keys offered by the site. This makes it harder for attackers to automatically generate a"logged-in" cookie for your site.
You may extend the plugin features with premium plugins like: Amazon S3 plugin, Members only plugin, DropShop etc.. So I think you can use it at no cost and this plugin is a good option.
Using a plugin for WordPress security only makes sense. WordPress backups need to be performed on a regular basis. Don't become a victim of not being proactive about your own Get More Info 16, as a result!