Quick security fixes for new WordPress Installs

Change “admin” account to something else

since this is a default account, when security flaws arise, crackers will target the admin account first – just delete it

Make sure you enter a full name and "display name" in your profile

That way, your actual login credentials won't be visible anywhere on the site

Disable comments

Under "Settings –> Discussion". You don't need them for now.

Set up Akismet

This plugin will get rid of most spam comments on your site – the process is a little cumbersome but worth getting used to.

Stop Google from indexing

You don't want this info to be public, it's just a sandbox. Click "Discourage search engines" under Settings –> Reading

Don't allow new members.

unclick "Anyone can register" in Settings –> General