Year and a half taught us that WordPress security should not be taken lightly by any means. Between 15% and 20% of the planet's high traffic websites are powered by WordPress. The fact it is an Open Source platform and everyone has access to its Source Code makes it a tempting prey for hackers.
Finally, fix malware problems free will also inform you that there's not any htaccess inside the directory. You can place a.htaccess record in to this directory if you want, and you can use it to handle this wp-admin directory by Ip Address address or address range. Details of how you can do this are plentiful around the net.
This is great news because it means that there's a community of users and developers who could improve Bonuses the platform. However there is a significant group there will always be people who will attempt to take down them.
Yes, you need to do regular backups of your site. I recommend at least a weekly database backup and a monthly "full" backup. More, if at all possible. If you make frequent additions and changes definitely more. If you have a community of people which are in there all the time, or make changes multiple times a day, a backup should be a minimum.
You can also make a firewall that blocks hackers. From coming into your own files, the firewall prevents the hacker. You also have to have version of Apache. Upgrade your PHP as well. It is important that your system is always full of upgrades.
Bear in mind that the safety of your sites depend on how you manage them. Be certain that you follow these simple tips to avoid hacks and exploits on sites and your own blogs.