You can change the number of attempts from the plugin’s dashboard > Login Security section. The feature is named Limit Login Attempts. The time values however, cannot be changed. The logic behind the time is as follows. Once the login attempt limit is reached, the IP from which the attempts have originated will be blocked first for 1 hour. If the attempts continue after the first hour, the limit will then be triggered for 24 hours and then for 7 days.