Okay, you got me: WordPress security isn't the sexiest way to spend your time, but it could end up being one of the most profitable! Nothing is more caustic to the lining of your stomach than having your site go down, and wondering whether or not you've lost it all.
Cloning your site is just another degree in rename your login url to secure your wordpress website that may be useful. Cloning simply means that you've backed up your site to a completely different place, (offline, as in a folder, so as not to have SEO issues ) where you can get it at a moment's notice if necessary.
Is also important. You want to backup database and all the files so in case of a sudden attack, you can bring your site back like nothing.
This is very handy plugin, protecting you against brute-force password-crack attacks. It keeps track of the IP address of every login attempt. You can configure the plugin to disable login attempts when a certain number of attempts is reached.
Can you view that folder Imagine if you go to go to my blog WP-Content/plugins? If so, upload this blank Index.html file inside that folder as well so people can't see what plugins you might have. Because even if your version of WordPress is current, if you're using a plugin or an old plugin using a security hole, someone can use this to get access.
The plugin should be updated play nice with your plugins to remain current with the latest WordPress release and have WordPress cloning and restore capabilities. The ability to clone your website (along with regular backups) can be useful if you ever want to do an offline site redesign, among other things.