Keep headers/logos under 125 pixels high. It takes up valuable viewing space, especially for laptop users, that is best left for the good stuff to appear"above the fold." Take a cue from the big companies, simple logos done well say it all. This is our #1 pet peeve - screaming logos and headers!
Installing the fix wordpress malware scanner Scan plugin alert you that you might have missed, and will check most of this for you. Additionally, it will tell you that a user named"admin" exists. That is your administrative user name. If you desire you can follow a link and find instructions for changing that name. I personally believe that a strong password is good security, and since I followed these steps, there have been no successful attacks on the blogs that I run.
I protect an access to important files on the site's server by putting an index.html file in the particular directory, which hides the files out of public view.
Luckily, keeping your WordPress site up-to-date is one of the easiest things you can do. For the past couple of versions, the ability to install automatic updates has been included click now by WordPress. A new update becomes available.
Can you view that folder what if you go to WP-Content/plugins? If so, upload this blank Index.html file inside that folder as well so people can't view what plugins you might have. Someone can use this to get access because if your existing version of WordPress is up to date, if you're using a plugin or an old plugin with a security hole.
These are some. Thing is they don't need much time to perform. These are easy solutions, which can be done easily.