Each and every wordpress users know the login page that is www.yourwpsite.com/wp-admin. First thing hackers try on these wordpress site is to access your site through wp-login page. If you need some extra security for your site why don’t you add an additional authentication to your login page? How to password protect your wordpress admin