By default, the newest version of WordPress is pretty secure. The development team of WordPress has considered anything that might have been added to some secure your wordpress site plugins. In the past , WordPress did have holes but now most of them are filled up.
I might find it a little harder to crack your password if you're among the ones that are proactive. But if you're among those reactive ones, I might just get you.
This is quite useful plugin, protecting you against brute-force attacks that are password-crack. check this It keeps track of the IP address of every login attempt. You can configure the plugin to disable login attempts for a range of IP addresses when a certain number of attempts is reached.
You can make a firewall that blocks hackers from infiltrating your own blogs. The hacker is prevented by the firewall from coming to your own files. You must have version of Apache. Upgrade blog here your PHP. It is essential that your system is always filled with upgrades.
However, I advise that you install the Login LockDown plugin in place of any.htaccess controls. Login requests will stop from being permitted from a certain IP address for an hour after three failed login attempts. If you do so, you may get useful site into your admin panel whilst and yet you have protection against hackers.