Finally, secure your wordpress site will tell you that there's not any htaccess in the wp-admin/ directory. You may put a.htaccess file if you wish, and you can use it to control access to the directory from IP address or address range. Details of how to do that are easily available on the internet.
Don't depend on your Web host - Many people depend on their web host to"do all that technical he said stuff for me", not realizing that sometimesthey don't! Far better to have the click to read responsibility lie with you, rather than from your control.
Keeping your WordPress site up-to-date is one of the easiest things you can do. For the past couple of versions, WordPress has included the ability to install automatic updates. Not only that, but websites are notified every time a new update becomes available.
As I (our untrue Joe the Hacker) understand, people have far too many usernames and passwords to remember. You have got Twitter, Facebook, your online banking, LinkedIn, two blog logins, FTP, web hosting, etc. accounts which all come with logins and passwords you will need to remember.
Keep in mind that the security of your blogs depend on how you manage them. Be sure that you follow these basic tips to avoid hacks and exploits on your own blogs and websites.