You CAN lock down the WordPress login with some .htaccess rules to prevent unauthorized login attempts. There have now been several large scale WordPress wp-login.php brute force attacks, coming from a large amount of compromised IP addresses spread across the world since April of last year. A large botnet of around 90,000 compromised servers has been attempting to break into WordPress websites by continually trying to guess the username and password to get into the WordPress admin dashboard. ... View Post