You may well have heard all the buzz online about the attacks on WordPress security. Unfortunately this is no joke, and it needs to be taken very seriously, or all you've built could be hijacked or worse, lost to you.
The fix hacked wordpress Codex has an outline of what permissions are okay. File and directory permissions can be changed through an FTP client or within the page from your web host.
Hackers don't have the power once you got all these lined up for your security to come to a WordPress blog. You definitely can have a WordPress account especially that one which gives big bucks from affiliate marketing to you.
Keep your WordPress Setup to date - One of the easiest and most valuable tasks you can do yourself is to ensure that your WordPress installation is updated. WordPress provides a notice on your dashboard to you, so there's really no reason.
Can you see that folder, Imagine if you visit WP-Content/plugins? If so, upload that blank Index.html file into that folder as well so people can not see what plugins you have. Because even if your existing version of WordPress you can try here is current, if you are using an old plugin or a plugin with a security hole, someone can use this to get access.
I prefer using i thought about this a WordPress plugin to get the work done. Just make sure that the plugin you choose is able to do copies, has restore and can replicate. Also be sure it is frequently updated to keep pace. There is not any use in not working, and backing your data up to you could try these out a plugin that is out of date.