WordPress Plugin: Wordfence logging lots of failed login attempts

It’s scary to see a WordPress site being probed for vulnerabilities Dashboard > Wordfence > Tools > Live Traffic

Most are for invalid users blog and admin.

As part of tuning Wordfence, block these immediately Dashboard > Wordfence > All Options > Brute Force Protection

Activity detail reflects the change: