Install the clean hacked wordpress site Firewall Plugin. This plugin investigates requests with simple heuristics to identify and stop attacks that are most obvious.
I might find it a little harder to crack your password if you're one of the ones. But if you're one of those ones that are responsive, I might get you.
Maintain control of your assets - Nothing is worse than getting your livelihood in the hands of check over here somebody else. Why take chances with something as important as your site?
Black and whitelists phrases based on which see this site area they appear inside. (unknown/numeric parameters vs. known post bodies, remark bodies, etc.).
However, I advise that you set up the Login LockDown plugin instead of any.htaccess controls. From being allowed after three failed login attempts from a specific IP address for an hour login requests will stop. You may still access your admin panel while away from your office, and yet you still have protection against hackers, if you do so.