fix hacked wordpress database will even tell you that there is not any htaccess from the directory. You can put a.htaccess file within this directory if you wish, and you can use it to control access by IP address to the directory or navigate to this website address range. Details of how to do that are available on the net.
There are ways to pull off this, and many involve copying and FTPing files, exporting and re-establishing databases and more. Some of these are very complicated, so it's imperative that you select the one that is right. Then you may want to look into using a plugin for WordPress backups if you are not of the persuasion.
Keep your WordPress Setup to date - One of the simplest and most valuable tasks you can do yourself is to ensure that your WordPress installation is upgraded. WordPress gives you a notice on your dashboard, so there is really no reason not to do this.
Another step to take to make WordPress secure is to upgrade WordPress. The main reason behind this is that with each update there also come fixes for security holes making it essential to upgrade early.
Oh . And by the way, I talked about plugins. Make sure it's a safe one when you get a plugin. Don't install any plugin because the owner is saying that plugin can help you do this or that. Use a test blog to look at the plugin, or maybe get a software engineer to examine it carefully. This way you'll know it isn't a threat for you or your organization.