It is really easy to access the login page of a WordPress website by anyone. Your login page shouldn’t be accessible to hackers and malicious attackers as they might get access to the admin area of your site. I no need to explain what will happen if they got access.
As you already know one can access your website’s login page by adding /login, /admin, or /wp-admin after the URL. (example: www.yourwebsite.com/login). They all will redirect you to the login screen of your website. One effective way to keep the hackers out is to move the WordPress login page to a new unique URL of your choice. Lets see how we can do that in a simple way, with a Plugin.
Change your WordPress login page with a plugin
Go to Plugin > Add New and search for WPS Hide Login.
Once you installed and activated it, go to Settings > WPS Hide Login
Set your custom login URL and Redirection URL (If someone tried to access /wp-admin or /login pages plugin will automatically redirect the user to this URL).
Once done save changes. Also, you can do this by editing the .htaccess files. It’s a more technical way of hiding the login page and I am not going to teach you that here as I am trying to tell you to do this with ease.
Anyway, comment below if you need any assistant. Good Luck!