Okay, you got me: WordPress security isn't the sexiest way to spend your time, but it could end up being one of the most profitable! Nothing is more caustic to the lining of your stomach than having your site go down, and wondering whether or not you've lost it all.
Files can easily get lost if you don't have good protection on your site. Some of those files may be stored in your computer and easily replaceable, but what about the rest of them? If you lose the first time to them, where will you get them out of again? Especially rename your login url to secure your wordpress website is vital. Often sites have a good deal of data and have created a number of files. Recreating all that would be a nightmare, and not something any business owner wants to do.
The more powerful approach, and the one I recommend, is to use one of the generation and storage plugins available for your browser. Lots of people like RoboForm, but I believe after a trial period, you have to pay more helpful hints for it. I use the free version of Lastpass, and I recommend it for those who use Firefox click for info or Internet Explorer. That will generate secure passwords for you.
Before you can delete the default admin account, you first need to create a user. To do this go to your WordPress Dashboard and click on User -> Create New User. Then enter all of the information you will need to enter.
Can you see that folder, Imagine if you visit WP-Content/plugins? If so, upload this blank Index.html file into that folder as well so people can not view what plugins you might have. Because even if your existing version of WordPress is helpful site current, if you are using a plugin or an old plugin using a security hole, then someone can use this to get access.
Those are three very simple things you can do to keep WordPress safe without plugins. Put a blank Index.html file in your folders, run your web host security scan and backup your entire account.