rename your login url to secure your wordpress website will inform you that there's not any htaccess within the directory. You can put a.htaccess record in to this directory if you want, and you can use it to manage usage of the wp-admin directory from Ip Address address or address range. Details of how you can do this are plentiful around the internet.
Don't make the mistake of thinking that your hosting company will have your back so far as WordPress copies go. Not always. It has been my experience that the hosting company may or may not be doing backups while they say they do. Why take that kind of chance?
Should you ever wish to migrate your website elsewhere, such as a new web host, you'd have the ability to pull this off without a hitch, and also without needing to disturb your old site until the new one was in place and ready to roll.
You can create a firewall that blocks hackers. From coming into your own files, the firewall prevents the hacker. You also have to have updated try this out version of Apache. Upgrade your PHP. It is essential that your system is always full of upgrades.
Software: If you've installed free scripts such as advice Wordpress, search Google for'wordpress security'. You'll get tips.