The article doesn't really address stopping the traffic to server. I would suggest a CDN such as Cloudflare. It will not only limit your exposure by being behind their "firewalls" but it will also limit resource usage on your server including reducing bandwidth traffic. All in all however some greats bits of information in article that users can implement to secure their WordPress instance. Worth the time to read.

All in One WP Security is a wonderful plugin but sometimes it can be a disaster when a newbie is using the plugin without understanding all the options .. I've seen people stumble :D

For me, the starting point is always the Wordpress's own brute force page which has suggestions on all kinds of brute force attacks and avoiding them. http://codex.wordpre.../Brute_Force_Attacks