I have had two WordPress blogs hacked into in the past. That was at a time when I was doing very little internet marketing, and until I found time to address the situation (months later), these sites were penalised in the search engines. They were not removed, but the rankings were reduced.
Installing the fix wordpress malware plugin Scan plugin alert you that you might have missed, and will check all this for you. It will also inform you that a user named"admin" exists. That is the user name. If you desire, you can follow a link and find directions for changing that title. I personally believe that a strong password is good security, and since I followed these steps, there have been no successful attacks on internet the numerous sites that I run.
There are many ways to pull this off, and a lot of them involve re-establishing databases and much more and FTPing files, exporting and copying. Some of these are very complex, so it's imperative that you select the right one. If you're not of the persuasion that is technical, then you may want to check into using a plugin for WordPress backups.
Fortunately, keeping your WordPress site up-to-date is one of the simplest view things you can do. For the past couple of versions, WordPress has included the ability to install automatic updates. A new upgrade becomes available.
Black and phrases that were whitelists based on which area they look inside. (unknown/numeric parameters vs. known article bodies, comment bodies, etc.).
Implementing all the above will take less than an hour to complete, while creating your WordPress site much more immune to intrusions. Websites were cracked last year, mainly due to preventable security gaps. Have yourself prepared and you're likely to be on the safe side.