Keep headers/logos under 125 pixels high. It takes up valuable viewing space, especially for laptop users, that is best left for the good stuff to appear"above the fold" Take a cue from the big companies, simple logos done well say it all. This is our #1 pet peeve - screaming logos and headers!
In my opinion, the best way to make sure that your WordPress security is through using a fix wordpress malware fix backup plugin. This is a relatively inexpensive, elegant and easy to use way to make certain that your site is available to you.
Also, don't make the mistake of thinking that your web host will have your back as far as WordPress backups go. Not always. It's been my experience that the company may or might not be doing proper backups, while they say they do. Take that kind of chance?
Recently, the site of Reuters was murdered by an unknown hacker and published a news article. Their reputation is already ruined because of what the hacker did, since Reuters is a news website. The same more information thing may happen to you if you do not pay attention.
You may extend the plugin features with premium plugins like: Amazon S3 plugin, Members only plugin, DropShop etc.. I think this plugin is a good choice and you can use it.
There is another problem you have with WordPress. People know where they can login and additionally they could visit with your login form and try out a different combination of passwords and user accounts. In order to prevent this from happening you need to install Login Lockdown. his explanation It's you could check here a plugin that only allows users to attempt and login with a wrong password three times. After that the IP address will be banned from the server for a specific timeframe.