According to my host I was recently hacked. I was not able to be sure that I would catch the malicious code myself so I ended up paying for a "cleaning service" in order to get back online. In trying to figure out how it happened and what to do to prevent it from happening again, I'm finding myself a bit confused. I got a bunch of lit from the host (bluehost) and am still working my way through it. I changed the passwords, scanned my computer, made sure everything was updated and checked functionality of the website. I read "hardening wordpress" and found it fascinating, thought about attempting it, but then stumbled upon another post that discussed the security plug-ins. I ended up using wordfence. Is there anything in "hardening wordpress" that will not be done by this plug-in?
Bluehost also recommended using "Cloudfare" but in my reading I see that some people are mentioning that wordfence and cloudfare may not play well together. Does anyone know anything about this?
Next, wordfence gave me a warning that "the DNS of one of my subsites has changed". What if anything should I do about this. I contacted bluehost about this but have not heard back yet.
Next, another post that I read said that their site crashed after an upgrade of site mapping. He said that his host said he was "using too much resources" which is what my host said. Could it be that this was my problem?
Also, I was examining my users. My business tends to be fairly local and I know many of my users, but many of the ones that I don't know are email@example.com. All with the same not very common domain. Should I be worried about that? If so what should I do.
Anything else that you would suggest that I should do or not do?