Backing up your site regularly also assists in procuring from secure your wordpress site hackers. You must keep a copy of your files hide away in backup system that you can be confident of your database. This makes you a protected files that serves you in times of unexpected down is the machine. Hackers are not as likely to steal from a secured back up system.
Use strong passwords - Do your best to use a strong password, alpha-numeric, with upper and lower case and special characters. Easy to remember passwords index are easy to guess!
Move your wp-config.php file up one directory from the WordPress root. WordPress will look for it if it can't be found in the main directory. Additionally, nobody else will have the ability to read the file unless they've SSH or FTP access.
You may extend the plugin features with premium plugins like: Amazon S3 plugin, Members only plugin, DropShop etc.. So I think this plugin is a good option and you can use it at no cost.
Just make sure you choose a plugin that's current More hints with release and the current version of WordPress, and which you can schedule, restore and clone.