I was amazed to read this week an analysis from Wordfence that the Panama Papers hack, the largest data breach to journalists in history, may have been caused by the failure to update a WordPress plugin. The plugin in question had still not been updated as of their original post. The papers implicated high officials in several world governments and led directly to the resignation of Iceland’s Prime Minister.
Security isn’t just about firewalls, backups, and careful coding. Failure to perform regular updates, even of things as seemingly minor as a web site plugin, can have major consequences.