My first step isn't one you have to take but it helped me. I had a good old fashion pity party. I cried and railed against the evil hackers (that where probably 13 and smarter then me) And then I did before I started my website, what I should have done. And here is where I want you to start as well. Learn hacked. The thing about repair hacked wordpress site and why so many of us recommend it is because it is really easy to learn. That is also a detriment to the health of our websites. We need to learn how more tips here to put in a safety fence around our website.
I might find it somewhat more difficult to crack your password, if you're one of the ones that are proactive. But if you're one of the ones that are responsive, I might just get you.
You first must create a user before you can delete the default admin account. To do this go to your WordPress Dashboard and click on User -> Create New User. Then check this site out enter all the information you will need to enter.
Another step to take to make WordPress more secure is to upgrade WordPress to the latest version. The main reason behind this is that with each upgrade there come fixes for old security holes making it essential to update early.
Of course it's possible to install more plugins to make your shop more user friendly like share buttons or backup plugin. That's all. Your store is up and running!