WordPress.org

If you log-in to your WordPress backend and enter the right username but a false password WordPress shows the error message "ERROR: The password you entered for the username admin is incorrect. Lost your password?" revealing that the username "admin" is registered and a possible attacker can check passwords with this username to gain access to the installation. This plugin changes the error messages to "ERROR: Invalid user/password combination." if you enter a non-registered username and/or a false password and makes it more difficult for an attacker to decypher your blog's passwords.