Our NGINX layer provides rate limiting and protection from the most common application level attacks, including brute force attacks against the WordPress login.
We protect against this activity by enforcing CAPTCHAs after too many failed attempts and not allowing anyone to log in with the username/password being the same.
Amazon AWS's networking security group rules filter out most other types of network-based attacks.
Future versions of our gateway stack will feature more WAF-type features.