My website keeps getting hacked even after I cleaned it

If it keeps getting hacked, you're missing something fundamental. First, change your hosting provider if you're on cheap shared hosting — those servers get compromised constantly and you're collateral damage. Move to a managed WordPress host like WP Engine, Kinsta, or SiteGround. Second, you MUST be using two-factor authentication. If you're not, enable it right now on WordPress admin, hosting panel, and email. Third, check if you have any old themes or plugins you're not using — delete them. Even inactive plugins can have vulnerabilities. Fourth, install a Web Application Firewall (Wordfence or Sucuri) and enable real-time scanning. Fifth, check your file permissions — files should be 644 and folders 755. Wrong permissions are a common entry point. Sixth, do you use the same password everywhere? Use a password manager. Finally, set up daily automated backups (UpdraftPlus to Google Drive). If it gets hacked again, you restore in 10 minutes instead of panicking. This time, lock it down properly.