I'm experiencing a brute force attack on my server. I have Blue Captcha and Limit Login Attempts installed. Until recent Blue Captcha has been the first line of defense and has done an excellent job of preventing bots from making reoccurring login attempts and has worked very successfully to prevent them from triggering them the Limit Logins Attempts plugin and logging methods
However, now I'm seeing persistent and reoccurring login attempts from random IP address bypassing Blue Captcha and hitting the Limit Login Attempts plugin. These bots are not leaving any trace records in Blue Captcha but go directly to hitting the Limit Login Attempts plugin.
I'm attaching links to two screen shots which I've just taken to day to show what is occurring.
Any suggestions to help stop this would be very useful.