I back my blogs frequently using a free plugin WP DB Backup up. If anything happens I will always restore my blog to the settings. I use my site to be scanned by WP Security Scan plugin that is free frequently and WordPress Firewall to block asks to fix wordpress malware attack.
Do not depend on your Web host - Many people rely on their web host to"do all that technical stuff for me", not realizing that sometimes, they don't! Far better to have the responsibility lie with you, instead of from your control.
This is quite useful plugin, protecting you against brute-force password-crack attacks. It check my reference keeps track of the IP address of every login attempt. You can configure the plugin to disable login attempts when a certain number of failed attempts is reached.
Now it's time to sign up for a new Facebook accounts and use identity to present as your buddy and this person's name. Once I get it all set up, I'll be emailing you posing as your friend and asking you to be friends with me on Facebook (or redirected here Twitter, or whichever societal site).
Implementing all of the above will take less than an hour to complete, while creating your WordPress site much more resistant to intrusions. Sites were cracked last year, largely due to easily preventable safety gaps. Have yourself prepared and you are likely to be on the safe side.