That's it... the title says it all.
I read an article today about how an ongoing attack has been detected that uses (and takes control of) a very large number of computers from all across the net, that use Wordpress, to attack major sites.
They are exploiting security vulnerabilities to access and control thousands of WordPress sites so that they can orchestrate DDoS [distributed denial-of-service] attacks on popular websites and create havoc for the site operators.
You can read the full story here: http://arstechnica.com/security/2013/04/huge-attack-on-wordpress-sites-could-spawn-never-before-seen-super-botnet/
In the article the author makes reference to a WordPress plugin that I use to secure my WP sites so I thought I would create a quick tutorial for you.
In this video I show how to install a free plugin called Better Wordpress Security so that you can make your WordPress site more secure. Click here to view the plugin page in the WordPress plugin directory. [As per Waltman17 :-) - Now ITHEMES SECURITY]
I show you how to do just the basics in the video but you should continue on with the other suggestions and make your site as secure as possible.
I mention a backup tool that I use. It is called Backup-Creator by Robert Plank. You can Google it if you're interested.
Please don't just follow the tutorial blindly - Be sure to read each option and action before you click the button and make sure that you understand what it is that you are doing.
Above all, always keep a current backup of your website and remember that you should test your backups and make sure they are working. I test mine by restoring to a demo site that I have for development projects only.
I hope this helps you.
~Marie