There are lots of tips and plugins to secure your WordPress blog. But we generally don’t follow those tips. There are many reason why we don’t follow those security tips.

Here are few basic tips which all WordPress user must follow as security measure.
1. Always use and update to latest version of WordPress.
2. Always keep your plugin updated.
3. Download database regularly.
4. Use hard guess password.
5. Protect admin folder using .htaccess You can allow particular IP or IP range to login in WP admin panel using .htaccess.