I’m seeing the same issue. ‘Wrong Password’ attempts to all of our admin users. I even deleted one of the users and it still showed ‘wrong password’ attempts for the deleted users…. not sure how that is possible…
I tried moving the login page, added recapta, and also added 2 factor authentication but still get the ‘wrong password’ attempts.
Whats going on?