Thanks. Actually I saw very few attempts to log in on the login page. Most of it was attempts to access plugin files and other file types mentioned in the OP.
By the way, I have changed the name of the login page and implemented 2FA.
My host (SG) seems solid on security.
-
This reply was modified 2 years, 4 months ago by flaneuring.
