Since scare tactics appear to be what drives some people to take fix wordpress malware attack a bit more seriously, or at the very least start considering the issue, let me shoot a couple of scare tactics your way.
Hackers do not have the capability to come to your WordPress blog when you got all these lined up for your security. You definitely can have a WordPress account especially that one that provides big bucks from affiliate marketing to you.
This is very useful plugin, protecting you against brute-force password-crack attacks. It keeps track of the IP address of every failed login attempt. You can configure the plugin to disable login attempts for a range of IP addresses when a certain number of failed attempts is reached.
Another step to take to make WordPress more secure is to upgrade WordPress. The reason behind this is that there also come Going Here fixes for security holes that are older which makes it essential to upgrade early.
There are always going to be risks being online (or even just being alive!) And it's easy to get caught up in the fear. We put the breaks on As soon as we get caught up in the fear. This isn't a good reaction. Simply take some common sense precautions, then forge ahead. It will need to be addressed then, if something bad does happen and of quaking in your boots 23, no amount will have helped. If nothing does, all is good and you have not made yourself ill.