Somewhat related, re: the same “ERROR: Invalid username. Lost your password?” message …
This message appears immediately on my sites upon visiting wp-login.php page, when I haven’t even yet typed in a username and password to attempt login … thus, one “incorrect” login attempt has been registered, if/when followed by a couple fat-finger mis-retries and I’m locked out.
Why does this happen/how can it be stopped? No other login security plugins installed, just the base WP mechanism. If I turn off BPS login security, the standard WP form appears without the error message.
Thanks!
Bob