To prevent password hackers may try to exploit this by using scripts that enter different combinations until your website cracks. , our website limit the number of failed login attempts per user.
You can try 5 failed attempts, lock the user out temporarily.
If someone has more than 5 failed attempts, then your site block their IP for a temporary period of time based on your settings. You can make it 5 minutes, 15 minutes, 24 hours, and even longer.
If you are a new member, try to check your e-mail to active your account and change your password.