If you don't have good protection on your site files can easily get lost. Some of those files might be stored on your computer and easily replaceable, but what about the rest of them? If you lose them the first time where will you get them from again? Especially for sites that have been in business for quite a very long time, fix malware problems free is very important. Many times sites have a lot of data and have made a number of files. Recreating all that would be a nightmare, and not something any business owner wants to do.
Everything you've worked for will go with this, should the server of your site return. You'll make no sales, get no traffic or signups to your site, and in short, you are out of business until you get the site.
Is to delete the default administrator account. This is important because if you don't do it, malicious user know a user name that they could attempt to crack.
Now we're getting into matters. Whenever you install WordPress, you have to edit the file config-sample.php and rename it to config.php. You need to install the database information there.
Oh . And by the way, I talked about plugins. Make sure it's a safe one when you get a plugin. Do not install any plugin just because the owner you can look here is saying that plugin will help you do this or that. Maybe use get a software engineer to examine it, or maybe a test site to look at the plugin. This way you'll know it isn't a threat for you or your organization.