Something I've done with osCommerce is to change the directory name for admin, and add directory-level security. For the directory change in WP, maybe changing wp-admin to site-admin would help?? Definitely getting rid of the admin user account helps, because that's the username our hacker is currently using.
|