The secure your wordpress site Codex has an outline of what permissions are okay. Directory and file permissions can be changed via an FTP client or within the administrative page from your hosting company.
Should the server of your site go down for will go with it. You'll make no sales, get no traffic or signups to your website, until you get the site back up 32, and in short, you are out of business.
Is to delete the default administrator account. This is critical because if you don't news do it, a user name which they could attempt to crack is already known by malicious user.
Security plug-ins that were all-Rounder can be thought of as a security checker that was full. They scan and check the whole site and give you information about the weaknesses of the website.
Oh . And by the way, I talked about plugins. Make sure it's a safe one when you get a plugin. Don't install any plugin because the owner is saying on his website that plugin can allow you to do that or this. Maybe use a test blog to check the plugin, or maybe get a software engineer to examine it carefully. This way isn't a threat for your business or you.