A half and year taught us that WordPress security shouldn't be dismissed by any means. Between 15% and 20% of the world's high traffic sites are powered by WordPress. The fact it is an Open Source platform and everyone has access to its Source Code makes it a tempting prey for hackers.
Cloning your site is just another degree in fix wordpress malware removal which may be useful. Cloning simply means that you've backed up your website to a totally different location, (offline, as in a folder, so as not to have SEO problems) where you can access it at a moment's notice if the need arises.
An easy way is to use a few tools. First of all, do not allow people run a web host security scan, to list the documents in your folders and automatically backup your whole web hosting account.
Recently, an unknown hacker murdered the blog of Reuters and published a fake news article. Their reputation is destroyed due to what the hacker did, since Reuters is a popular news website. In the event you do not pay attention on the security of your WordPress 20, the same thing may happen to you.
Take note of your new password! I recommend the paid or free version of the software that is protected *Roboform* to remember your passwords.
However, I advise that you install the Login LockDown plugin in useful site place of any.htaccess controls. Login requests will stop from being allowed from a certain IP address for one hour. You may still get into your admin panel while away you can find out more from your office, and yet you still have protection against hackers if you do that.