Are you following these 9 best practices for WordPress security?