I have had two WordPress blogs hacked into in the past. That was at a time when I was doing very little internet marketing, and until I found time to address the situation (months later), these sites were penalised in the search engines. They were not removed, but the rankings were reduced.
Finally, installing the fix wordpress malware removal Scan plugin alert you to anything that you might have missed, and will check all this for you. Additionally, it will tell you that a user named"admin" exists. Needless to say, that is your user name. You can follow a link and find instructions for changing that title, if you desire. I personally believe that a strong password is good enough protection, and since I followed these steps, there have been no attacks on the sites that I run.
Also, don't make the mistake of believing that your hosting company will have your back so far as WordPress backups go. Not always. While they say they do, it has been my experience that the company may or might not be doing proper backups. Why take that kind of chance?
You first need to create a new user before you can delete the default admin account. To do this go to your WordPress Dashboard and click on User -> Create New User. Then enter all of the information you will need to enter.
Now it's time to register for a new Facebook account and use this individual's name and identity. Once I get it all set up, I'll be emailing you posing as your friend and asking you to be friends with me on Facebook (or Twitter, or whichever societal site).
There is another problem you have with WordPress. People know they also could just drop by with your login form and where they can login and try outside a different combination of user accounts and passwords. In order to stop this from happening you want to install Login Lockdown. It's a plugin that only lets users attempt to login with a password three times. After that the IP address will be click banned from the server for a certain amount of time.