Since scare tactics seem to be at least start thinking about the problem, or what compels some people to take repair hacked wordpress site a little more seriously, let me shoot a scare tactics your way.
No software system is immune to bugs and vulnerabilities. Security holes will be found and bad guys will do their best to exploit them. Keeping your software up-to-date is a good way because reliable software sellers will fix their products once security holes are found.
Exclude pages - This plugin provides a checkbox,"include this page in menus", which like this is checked by default. If you uncheck it, the page will not appear in any listings of pages (which contains, and is usually restricted to, your webpage navigation menus).
In addition to adding a secret key to your wp-config.php document, also think about changing your user password into something that is strong and unique. A good idea is to avoid phrases, use upper and lowercase letters, and include amounts, although wordPress her latest blog will let you know the strength of your password. It's also a good idea to change your password frequently - say once every six months.
The plugin should be updated play nice with your other plugins to remain current with the latest WordPress release and have WordPress cloning and restore capabilities. The ability to clone your website (along with regular backups) can be helpful if you ever want to do an offline website redesign, among other find out things.