Last year and a half educated us that WordPress security shouldn't be dismissed by any means. Between 15% and 20% of the world's high traffic sites are powered by WordPress. The fact it is an Open Source platform and everybody has access to its Source Code makes it a prey for hackers.
fix hacked wordpress database will inform you that there's no htaccess inside the directory. You may place a.htaccess record into this directory if you want, and you can use it to manage usage of this wp-admin directory from Ip Address address or address range. Details of how you can do that are plentiful around the net.
Everything you've worked for will go with it, should the server of your site go down. You will make no sales, get no visitors or signups to your site, and in short, you are out of business until you have the site back up again.
Recently, an unknown hacker hacked the site of Reuters and posted a news article. Their reputation is ruined because of what the hacker did, since Reuters is a popular news site. If you don't pay straight from the source attention on the safety of your WordPress 20, the same thing may happen to you.
Safety plug-ins can be thought of as a security checker. They provide you with information about the probable weaknesses of the website and scan and check the whole website.
Do your homework and some searching, but if you are pressed for time and want to get this done once and for all, try out the WordPress safety plugin that I use. It is a relief to know that my website (and business!) are secure.