Maybe this is a dumb question, but I don't know enough about how BPS works or how sites get hacked to figure out the answer myself. If I installed and set up the BulletProof Security plugin while there were security issues on my site, do I need to "reset" it (for lack of a better term)?
I installed both BPS and Wordfence on the same day, but wasn't able to run a Wordfence scan right away. A few days later, when I was able to scan the site, it found two backdoor access points and a modified file. Our site was recently completely replaced, and I think these were old errors from the previous version of our website (some of the files, in particular one theme that we'd had trouble with anyways, got carried over to the new site). I haven't found any other issues, but I'm still working on that. My concern is that I set up BPS while the site was vulnerable. Is it possible that what was set up is now vulnerable as well because of those issues, or is it separate enough that the security should be solid? Would creating and activating new Master files have any point?
I hope that all makes sense. Thank you!