You can buy security plugins . There are many safety plugins out there that promises optimum security for your own blog. One is called fix wordpress malware removal Scan. The system is continuously scanned by this plugin for enhancing the security. It also updates the safety that the system can not be penetrated by hackers.
The one I recommend, and the more powerful approach, is to use one of the password creation and storage plugins available on your browser. RoboForm is liked by many people, but I believe after a trial period, you need to pay for it. I use the free version of Lastpass, and I recommend it for those of you who use Firefox or Internet Explorer. That will generate secure passwords for you.
Yes, you want to do regular backups of your website. I recommend at least a weekly database backup and a monthly "full" backup. More, if possible. Definitely more if you make changes and frequent additions to your site. If you make changes multiple times a day, or have a community of people which are in there all the time, a backup should be a minimum.
Note that you should try this redirected here last step for setups. You have to change all the table names within the database if you might like to get it done for existing installations.
Free software: If you've installed free scripts search Google for'wordpress security'. You'll get tips on how to make your WP blog secure.