How to Hide Your WP Admin Login Page
No, you don’t have to worry, as this is common with many WordPress websites (including mine). And if you have a strong password and your WP username is not “admin”, you should be safe. However, you can take your security even to a further level by renaming your wp-login.php page to something different.
There are more ways to do this. If you’re using a security plugin like for example All In One WP Security & Firewall or a premium security plugin like e.g. iThemes Security Pro, you are able to rename your WordPress login page in the settings of these plugins.
Or you could also simply just use the plugin that is used particularly for this. My favorite plugin for this (and that I’m personally using, too) is the plugin called WPS Hide Login. It’s a free plugin that you can download from the WordPress plugin repository. So feel free to download it and install on your WP website. After you install and activate it, go to the WordPress general settings in your admin panel and you will find a “Login URL” field at the bottom. So this is where you can set the custom name for your WP-login page.
When setting the custom URL, try to choose something with both small and large characters & numbers, so that it is secure. And choose something that you will be able to memorize as well. This is really important, because if you forget your login URL, you won’t be able to log into your WordPress website admin panel.
In my opinion hiding your WP admin login page is a good practice for every WP website that you’ll create.