I had serious try of attack on my pages in last days. Basically someone tried every 1 second to login as admin. So I hidden login link and changed login URL using different security plugin. But the thing is that Wordfence still reported another attempts in Login and Logouts section. But I dont think that attacker did figure out in 1 second the change of new admin login URL!
So I want to ask you how does reporting in Login and Logouts section work ? Is it reporting even attempts to log in on page which doesnt work (like old or default WP admin login URL) ?
The answer will help me and others to "sleep well" or work on another security steps...