change SSH port from 22 to another port
next block ssh access from all IPs except yours
all database connections should be with Parameters like bindParam using PDO or mysqli
get all scripts like phpmyadmin etc. up to date. all other scripts remove them from your system.
secure all upload directories with htaccess protection
