amazon servers hitting my wp-login.php

Maybe try using a “Hide My Login” plug-in?

Criminals use the Amazon servers. Wonderful thing about Wordfence is it shows the world just how messed up things are, so perhaps there will be more activism to stop some of the traffic from bad actors. In the meantime, as Bluebear mentions, one of the steps with securing WordPress is to get rid of the lame standardized admin login URL. I’ve found that the plugin “WPS Hide Login” plays very nicely with Wordfence.

Once you have that set up, try adding /wp-login.php and variation thereof to your “Immediately Block URLs” in Wordfence “Options.” And enjoy watching the honey pot block the bad actors.

To answer your question about being worried. I’d say the answer is yes, anyone who has a website should be worried, and spend quite a bit of energy and time on defense. But in terms of being worried about you being singled out for an attack? Depends on what your site actually is. If you have something obviously valuable, you might be singled out, but normally you are just seeing the standard and amazingly prolific criminal bot traffic that is said to be taking so much bandwidth it’s using the equivalence of the whole UK’s electricity.

MTN

I utilized the block domain function with *amazonaws.com and it appears to be working.

Hi justinkates,
Just an alternative way you can block this specific IP directly from “Live Traffic” by hitting “Block this IP” button, then go to (Wordfence > Blocked IPs) and make it permanent, because by blocking the whole *.amazonaws.com access to your website, you might block some good services hosted there too.

Thanks.