It’s a good idea to turn on “Completely block access to XML-RPC” in the All In One WP Security plugin. This will prevent spammy logins related to logins via XMLRPC.
Additionally, you can prevent brute force login attacks by enabling the login lockdown feature using the same All In One WP Security plugin.
Leave a Reply