Hack Prevention

useful codex:
https://codex.www.ads-software.com/Hardening_WordPress
https://codex.www.ads-software.com/Brute_Force_Attacks

You can check these sec plugins: ithemes, wordfence, and sucuri. ‘Admin’ username is not secure since its prone to brute force attack so you have to create a username that is unique. Make sure to backup your site before any changes.

Sorry if I wasn’t clear.

The admin name is not ‘admin’ nor the name used to post. So the name itself being accessible to an outsider seems a security issue. If I post as Joe, for example, I sign in as “Jack$24601bean”. My hack alerts are telling me someone is trying to sign in with that name.

What you can do is limit the # login attempts for each user in that way the site performance will not be affected. Don’t forget to install a sec plugin.

For admin password: make sure that you create 15+ character with numbers, letters, and special characters for the pwd.