Year and a half taught us that WordPress security shouldn't be taken lightly by any means. Between 15% and 20% of the world's high traffic sites are powered by WordPress. The fact it is an Open Source platform and everybody has access to its Source Code makes it a prey for hackers.
Cloning your website is just another level in how to fix hacked wordpress that may be very useful. Cloning simply means that you have backed up your site to a totally different place, (offline, as in a folder, in order to not have SEO issues ) where you can get it in a moment's notice if the need arises.
No software system is resistant to bugs and vulnerabilities. Security holes will be found and bad guys will do their best to exploit them. Keeping your software up-to-date is a fantastic way once security holes are found, because their products will be fixed by software sellers.
Exclude pages - This plugin provides a checkbox,"include check out here this page in menus", which is checked by default. If you uncheck it, the page will not appear in any listings of pages (which contains, and is ordinarily limited to, your page navigation menus).
What's the best way? Out of all the choices that are available right now, which one is appropriate for you and which path should you choose?
Implementing all the above will take less than an hour address to complete, while creating your WordPress site considerably more resistant to intrusions. Websites were last year, largely due to easily preventable safety gaps. Have yourself prepared and you are likely to be on the safe side.