There are countless blogs. Money is being made by some people through it and some don't. Many of the bloggers use WordPress at the moment. No matter what sort of person you are, you need to make sure that your blog is protected.
The secure your wordpress website Codex has an outline of what permissions are okay. Directory and file permissions can be changed either through an FTP client or within the administrative page from your hosting company.
Don't make the mistake of believing that your hosting company will have your back so far as WordPress backups go. Not always. It has been my experience that the company may or might not be doing backups while they say they do. Take that kind of chance?
Exclude pages - This plugin adds a checkbox,"include this page in menus", which can be checked by default. If you uncheck it, the page won't appear in any listings of pages (which contains, and is usually limited to, your page navigation menus).
Along with adding a read this post here secret key to your wp-config.php file, also think about changing your user password into something that is strong and unique. WordPress will tell you the strength of your password, but include numbers, use letters, and a great idea is to avoid common phrases. It's also a good idea to their explanation change your password regularly - say once.
However, I advise that you set up the Login LockDown plugin instead of any.htaccess controls. That will stop login requests from being permitted from a specific IP address for one hour. You may get into directory your panel while and yet you have protection against hackers, if you do so.