Cloning your website is another level in fix wordpress malware that may be useful. Cloning simply means that you have backed up your site to a completely different place, (offline, as in a folder, in order to not have original site SEO problems) where you can access it in a moment's notice if necessary.
An easy way to keep WordPress safe would be to use a few built-in tools. To begin with, more helpful hints do not allow people run a web host security scan, to list the documents in your folders and automatically backup your web hosting account.
Exclude pages - This plugin provides a checkbox,"include this page in menus", which can be checked by default. If you uncheck it, the page will not appear in any listings of pages (which includes, and is usually limited to, your page navigation menus).
Can you see that folder Imagine if you go to WP-Content/plugins? If so, upload that blank this hyperlink Index.html file inside that folder as well so people can not see what plugins you have. Because even if your current version of WordPress is current, if you're using a plugin or an old plugin with a security hole, someone can use this to get access.
These are only some. Fantastic thing is they don't need much time to do. These are also solutions, which can be carried out.