Login or usernames can be identical to your display name on the front-end, for example as an author of a blog post. This creates an instant vulnerability as you login name is available to anyone. Set it so that the display name does not correspond with the login name.
From the Security & WordPress categories Enable two-factor authentication
Implement two-factor authentication adds an extra layer of security. Even if a username & password is compromised, the additional security provides further protection.
