Allow me to shoot a scare tactics your way since scare tactics appear to be what drives some people to take rename your login url to secure your wordpress website a little more seriously, or at the very least start thinking about the issue.
It is not unusual for blogs to be hacked by a random person. In fact, even domains get hacked. If you aren't a programmer or a developer, there is no way you will understand anything about programming languages or codes. More Help This is the major reason why a number of the people who don't know anything wind up thinking if there are any methods to protect investments and their websites from such hackers.
Exclude pages - This plugin adds a checkbox,"include this page in menus", which is checked by default. If you uncheck it, the page will not appear in any listings of pages (which contains, and is ordinarily restricted to, your webpage navigation menus).
Security plug-ins can be considered as a full security checker. They check and scan the whole site and give you information about the probable weaknesses of the website.
However, I advise that you set up the Login LockDown plugin instead of any.htaccess controls. From being permitted after three failed login attempts look at this website from a specific IP address for one hour login requests will stop. You can access your admin panel while away from your workplace, and yet you have good protection against hackers, if you do that.