Preserve headers/logos underneath 125 pixels high. It takes up beneficial viewing space, primarily for laptop users, that is ideal left for the good stuff to appear"above the fold" Take a cue from the massive businesses, straightforward logos completed nicely say it all. This is our #1 pet peeve - screaming logos and headers!
Ultimately, fix hacked wordpress site will inform you that there is no htaccess within the directory. You can place a.htaccess record into this directory if you want, and you can use it to manage usage of the wp-admin directory by Ip Address address or address range. Details of how you can do this are plentiful around the internet.
It all will start with the fundamentals. Try using complex passwords. Use numbers, letters, special characters, and spaces and combine them to make a password. You can also use usernames that aren't obvious.
You also need to set the"Anyone Can Register" in Settings/General to off, and you should have some sort of spam plugin. Akismet is the one I use, the old standby, but there are lots of them nowadays.
Can you view that folder what if you visit WP-Content/plugins? If so, upload this blank Index.html file into that folder as well so people can't view what plugins you might have. Because even if your existing version of WordPress is up to date, if you are using an old plugin or a plugin with a anchor security hole, someone can use that to get access.
However, I recommend that you install the Login LockDown plugin in place of any.htaccess controls. That will stop login requests from being permitted from a certain IP address for one hour. If you do that, you may get into your admin panel whilst and yet you have good protection against hackers.