Last year and a half educated us that WordPress security should not be dismissed by any means. Between 15% and 20% of the planet's high traffic websites are powered by WordPress. The fact it is an Open Source platform and everybody has access to its Source Code makes it a prey for hackers.
By default, the latest version of WordPress is pretty secure. The development team of WordPress has considered anything which may have been added to some secure your wordpress site plugins. Before, WordPress did have holes but most of them are filled up.
Well, we are talking about WordPress but what's the sense if your computer is in danger of hackers of performing updates and security checks. There are malicious files that can encrypt key loggers in your PC. Regardless of what you do, they can access everything that you type on your computer when this occurs. You can find a lot of good antivirus programs online. Just look for a antivirus program or ask experts about this.
Exclude pages - This plugin provides a checkbox,"include this page in menus", which can be checked by default. If you uncheck it, the page will not appear in any listings of pages (which contains, and is usually restricted to, your webpage navigation menus).
Can you look at this website view that folder, what if you visit WP-Content/plugins? If so, upload this blank Index.html file into that folder as well so people can't see what plugins you might have. Someone can use this to get access because even if your version of WordPress is current, if you are using a plugin or an old plugin with a security hole.
Using a plugin for WordPress security just makes great sense. WordPress backups need to be performed on a regular basis. Don't become a victim because of not being proactive!