fix wordpress malware will even tell you that there is no htaccess in the wp-admin/ directory. You can put a.htaccess file within this directory if you desire, and you can use it to control access by IP address to the directory or address range. Details of how to do that are available on the net.
No software system is resistant to bugs and vulnerabilities. Security holes will be discovered and guys will do their best to exploit them. Keeping your software up-to-date is a good way because reliable software vendors will mend their products once security holes are found.
Maintain control of your online assets - Nothing is worse than getting your livelihood in somebody else's hands. Why take chances with something as important as your site?
Note that you should try this step for new installations. You will also have to change all of the table names within the database, if you might like to do it for existing installations.
However, I recommend that you install the Login LockDown plugin as opposed to click to read more any.htaccess controls. That will stops login requests from being permitted from Get More Information a for an hour or so after three unsuccessful login attempts. It is still possible to access your admin mobile while from your workplace, and yet you still have good protection against hackers, if you accomplish this.