I was getting continuous hacking attempts on wp-login.php and xmlrpc.php, which have completely stopped. One fantastic feature is stopping external access to back-end urls, since hackers use these to find weaknesses to hack in with. Excellent security not found in other plugins!