Based on an email that I received yesterday from Wordfence I have decided to install Wordfence WordPress security plugin on all WordPress sites. The email stated that they have detected a large distributed brute force attack that was underway on Monday. After checking some other security sites this looks legitimate so I am going to install the plugin on all our sites.
I chose Wordfence as a on of my standard security plugins because it was the first to spot and warn their users about the brute force attack and their 4.9 out of 5 stars rating in the repository. The fact that they had 1100 5 star ratings and 1,380,924 downloads icing on the cake.