I have had two WordPress blogs. That was at a time when I was doing virtually no internet advertising, and until I found time to handle the situation (weeks later), these sites were penalized in the main search engines. They were not eliminated the ratings were reduced.
By default, the newest version of WordPress is pretty darn secure. The development team of WordPress has considered anything which may have been added to some fix malware problem plugins. In the past , WordPress did have holes but most of them are stuffed up.
Safeguard your login credentials - Do not keep your login credentials where a hacker might find them. Store them off, as well as offline. Roboform is for protecting them very good , too. Food for thought!
Keep control of your assets - Nothing is worse than getting your livelihood in someone else's hands. Why take chances with something as important as your site?
WordPress is one of the most popular platforms for sites and self-hosted blogs. While WordPress is pretty secure from the box, there are always going to be individuals who wish to make trouble by finding a way to crack into accounts or sites to cause harm or inject hidden spammy links. That is why it's essential to make certain that your WordPress installation is as secure as possible.
Oh . And incidentally, I talked about plugins. Make sure it's a safe one when you get a plugin. Don't install any plugin because the owner is saying on his website that plugin will help you do this or that. Maybe use a test blog to look at this now check the plugin, or maybe get a software engineer to analyze it carefully. This way isn't a threat for you or your organization.