fix wordpress malware fix will inform you that there's not any htaccess within the directory. You may place a.htaccess record into this directory if you would like, and you can use it to handle this wp-admin directory by Ip Address address or address range. Details of how you can do this are plentiful around the internet.
Don't make the mistake of believing that your web host will have your back so far as WordPress backups go. Not always. While they say that they do, it has been my experience that link the company may or might not be doing proper backups. Why take that kind of chance?
Recently, an unknown hacker murdered the site of Reuters and published a news article. Due to what the hacker did since Reuters is a popular news website, their reputation is destroyed. Something similar may happen to you if you do not pay attention.
If you aren't running the latest version of WordPress, upgrade. Similar to keeping your door unlocked when you leave for vacation leaving your website on an old version is.
The plugin should be updated have WordPress, play nice and to remain current with the latest WordPress release and restore capabilities. The ability to clone your site (in addition to regular copies ) can be useful if you ever need to do an offline website redesign, among other things.