It's also important to change admin username and your password if someone helps you and needs admin username and your password to login to perform the job. Admin username and your password changes after all the work is complete. Even if the person is trustworthy, someone in their company might not be. Better to be safe than sorry!
Cloning, as it applies to fix hacked wordpress database, is the act of creating an exact copy of your WordPress install. What is good is that in just a few clicks, you can do it with the right software. There are a lot of reasons why you might want to do this. Here are only a few.
Strong passwords - Do your best to use a password, alpha-numeric. Easy to remember passwords are also easy to guess!
Keep control of your assets Recommended Reading that are online - Nothing is worse than having your livelihood in someone else's hands. Why take chances with something as important as your website?
Can you see that folder Imagine if you go to WP-Content/plugins? If so, upload that blank Index.html file into that folder as well so people can't see what plugins you might have. Because if your existing version of WordPress is current, if you're using a plugin or an old plugin using a security hole, then someone site can use this to get access.
Don't use wp_. Web hosting providers are removing that default but if yours doesn't, fix wp_ to anything else but that.