Finally, installing the fix malware problem Scan plugin will check most of this for you, and alert you that you may have missed. It will also tell you that a user named"admin" exists. That is your administrative user name. You can follow a link and find directions if you wish. I believe that a password is good enough security, and because I followed those steps, there have been no attacks on the blogs that I run.
The more powerful approach, and the one I recommend, is to use one of the password generation and storage plugins available for your browser. I think after a reference free trial period, you have to pay for it, although many people like RoboForm. I use the free version site web of Lastpass, and I recommend it for those who use Internet Explorer or Firefox. That will generate passwords for you; you then use one master password to log in.
Recently, an unknown hacker murdered the site of Reuters and posted a news article that was fake. Their reputation is ruined because of what the hacker did, since Reuters is a news website. If you don't pay attention on the security of your WordPress 20, Something similar may happen to you.
Note that this step for new installations should only try. You need to change of the table names inside the database, if you might like to do it for installations.
These are only some. Thing is they don't need much time to do. These are also easy options, which can be done easily.