Creating a website always seems to invite spam and the occasionally hacker. WordPress continues to improve it’s security each release. If you are really concerned about security you might want to read the following clip about WordPress security and follow the suggestions given.
You may also install the following plugin which wills can and suggest security changes to your site.
One of the quick things you can do is restrict access to the WordPress administration side. Create the file, “.htaccess” in /wp-admin/ and paste the following into it, replacing the IP address with your own. Find your IP…. [see original article to get code]
Secondly, create an empty index.html file in your /wp-content/plugins/ directory. This will prevent the listing of your plugins for the world to see, making it a bit harder for hackers to find exploits.
Next, delete the username “admin” (obviously make a new username for yourself first), and use a strong password for your login.