I have had two WordPress blogs hacked into in the past. That was at a time when I was doing very little internet marketing, and until I found time to address the situation (months later), these sites were penalised in the search engines. They were not removed, but the rankings were reduced.
Cloning your site is another degree in fix wordpress malware attack which can be very useful. Cloning simply means that you have backed up your website to a completely different place, (offline, as in a folder, so as not to have SEO problems) where you can get it at a moment's notice if necessary.
This is fantastic news because it means that there's a community of developers and users who can enhance the platform. However there is a group there will always be people who will attempt to take down them.
Is to delete the default administrator account. This is i thought about this important because if you do not do it, malicious user know a user name that they could try to crack.
Take note of your password! I suggest the version of the software that is secure *Roboform* to remember your passwords.
I prefer using a WordPress plugin to get the work done. Just make like it sure that the plugin you select is able to do select backups, has restore and can replicate. Also be sure that it is frequently updated to keep pace with all versions of WordPress. There's absolutely not any use in not functioning, and backing up your data to a plugin that is out of date.