Cloning your website is just another level in fix wordpress malware fix that can be very useful. Cloning simply means that you have backed up your website to a completely different place, (offline, as in a folder, so as not to have SEO issues ) where you can access it at a moment's notice if the need arises.
Hackers don't have the capability once you got these lined up for your security, to come to your WordPress blog. You can have a safe WordPress account which provides you big bucks from affiliate marketing.
This is very handy plugin, protecting you against brute-force password-crack attacks. It keeps track of the IP address of every failed login attempt. You can configure the plugin to disable login attempts when a certain number of attempts is reached.
What if you go to WP-Content/plugins, can you see that folder? If so, upload that blank have a peek at this site Index.html file into that folder as well so people can't view what plugins you might have. Because if your current version of WordPress is current, if you're using an old plugin or a plugin with a security hole, then someone can use this to get access.
These are a few. Thing is that they don't require much time to perform. These are also simple solutions, which can be carried out.