By default, the latest version of WordPress is pretty secure. Anything that might have been added to any fix malware problems free plugins has been considered by the development team of WordPress . In the past , WordPress did have holes but most of them are stuffed up.
Protect your login credentials - Don't keep your login credentials where they might be found by a hacker. Store them off, and even offline. Roboform is for protecting them good . Food for thought!
Recently, the site of Reuters was hacked by an unknown hacker and posted a news article that was fake. Their reputation is already destroyed due to what the hacker did since Reuters is a news website. The same thing may happen to you in the event you do not pay attention.
Now we are getting into things. You must rename it to config.php and alter the file config-sample.php, when you install WordPress. You need to set up the database facts there.
Oh . And incidentally, I was talking about plugins. Make sure here are the findings it's a secure one, when you get a new plugin. Do not install any plugin simply because the owner is saying on his site that plugin will allow you to do this or that. Use get a software engineer to analyze it carefully, or perhaps a test blog to look at the plugin. This way isn't a threat for your organization or you.