Cloning your site is just another level in fix wordpress malware attack that may be useful. Cloning simply means that you have backed up your website to a completely different place, (offline, as in a folder, in order not to have SEO problems) where you can get it in a moment's notice if necessary.
There are numerous ways to pull this off, and a lot of them involve re-establishing databases and more and FTPing files, exporting and copying. Some of them are very complex, so it's imperative that you go for the right one. If you are not of the persuasion that is technical, then you may want to check into using a plugin for WordPress backups.
Keep control of your straight from the source online assets - Nothing is worse than getting your livelihood in someone else's hands. Why take chances with something as important as your website?
What's the best way? Out of all the choices that are available today, which one is right for you personally and which path should you choose?
Just ensure which you can schedule, and you decide on a plugin that is current with the current version and release of WordPress, restore and replicate.