repair hacked wordpress site will inform you that there is no htaccess within the directory. You can put a.htaccess record into this directory if you would like, and you can use it to manage usage of this wp-admin directory from Ip Address address or address range. Details of how you can do this are plentiful around the net.
Hackers don't have the capability to come to a WordPress blog once you got these lined up for your own security. You can have a safe WordPress account that gives you big bucks from affiliate marketing.
I don't think there is a person out there that after learning how much of a problem WordPress hacking is that it's a fantastic idea. Something I've noticed over the years is that when it comes to securing their sites, bloggers seem to be stuck in this state.
As I (our untrue Joe the Hacker) understand, people have important site far too many usernames and passwords to remember. You've got Twitter, Facebook, your online banking, LinkedIn, two site logins, FTP, internet hosting, etc. accounts which all come with logins and passwords you need to remember.
Software: If you've installed free scripts search Google for'wordpress security'. You'll get many tips on how to make your WP blog secure.