There are millions of blogs. Money is being made by some people and some do not. Most of the bloggers use WordPress at the moment. You will need to be sure that your blog is secure.
You can purchase security plugins to your WordPress blog. There are lots of security plugins out there that guarantees security for your blog. One is called fix wordpress malware attack Scan. This plugin continuously scans the system . That the system can not be penetrated by new 9, Additionally, it updates the safety.
The stronger approach, and the one I recommend, is to use one of the password generation and storage plugins available on your browser. I think after a trial period, you need to pay for it, although RoboForm is liked by many people. I use the free version of Lastpass, and I recommend it for those who use Firefox or Internet Explorer. That will generate passwords for you; you then use one master password to log in.
Yes, you need to do regular backups of your site. I recommend at least a weekly database backup and a monthly "full" backup. More, if at all possible. If you make changes and additions to your site, definitely. If you have a community of people that are in there all the time, or make changes multiple times every day, a daily backup should be a minimum.
Pathological-looking phrases that were whitelists and black based on which anchor field they appear within, in a page request. (unknown/numeric parameters vs. known article bodies, remark bodies, etc.).
These are some of the things I do to secure my blogs. Thing is that they don't require much time to do. These are easy solutions, which informative post can be carried out.