secure your wordpress site Watch out form entries. You may useRegexp to process the information from forms. You can also define preloaded variables as type data in the form of checkboxes, radiobuttons etc..
Everything you've worked for will proceed with it should the server of your site return. You will make no sales, get no traffic or signups to your website, until you get the site and in short, you're out of business.
Yes, you want to do regular backups of your site. I my link recommend at least a weekly database backup and a monthly "full" backup. More. If you make changes and additions to your site, definitely more. If you make changes multiple times every day, or have a community of people which are in there all the time, a backup should be a minimum.
Upgrade now if you aren't running the latest version of WordPress. Like keeping your door unlocked when you leave for vacation, leaving your site is.
The plugin should be updated play nice with your plugins to remain current with the latest WordPress release and have WordPress cloning and restore capabilities. The ability to clone your site (along with regular backups) can be helpful if you ever want to do an offline website redesign, among other things.