Hi,
Nin Tec are using Basic Htpasswd protection.
http://forum.ait-pro.com/forums/topic/password-protecting-a-page/
They also failed to use the Captcha setting in the BPS Pro Login Protection when testing.
However you can achieve better results with this code:
http://forum.ait-pro.com/forums/topic/protect-login-page-from-brute-force-login-attacks/
It will ONLY show the wp-login.php with your internet IP.
Basic Htpasswd protection is protecting a folder, BUT WordPress already has that type of protection built in.
The .htaccess code linked above is protecting a file and whitelisting your IP.
The NinTec results impressed me too till I did some research and digging around.
