Since scare tactics seem to be what drives some people to take secure your wordpress website a little more seriously, or at the very least start considering the issue, let me shoot a few scare tactics your way.
No software system is resistant to bugs and vulnerabilities. Security holes will be discovered and men will do their best to exploit them. Keeping your software up-to-date is a good way once security holes are found because their products will be fixed by software vendors that are reliable.
Exploit Scanner goes seeking anything suspicious through the files on your website post, comment and database tables. You are also notified by it for plugin names that are unusual. It doesn't remove anything, it warns you for threats.
In addition to adding a secret key to your wp-config.php document, also consider altering your see it here user password into something that's strong and unique. A good idea is to more avoid common phrases, use upper and lowercase letters, and include numbers, although you will be told the strength of your password by wordPress. It's also a good idea to change your password regularly - say once.
When your site is new, you do consider needing security but you do need to protect your investment and yourself. Having a site go down and not being able to restore it can mean a loss of customers who won't remember to look for your site again later and can not find you. Don't let that happen to you. Back up your look here site as soon as you get it started, as the website is operational, and schedule backups for as long. That way, you will have peace and WordPress security of mind.