• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to footer

Lifeform

Web Design | Digital Imagery

  • Home
  • About
  • Gallery
  • Services
  • Blog
  • Contact

Making History with your Out-of-Date WordPress Site

April 9, 2016

keyhole

The ‘Panama Papers’ hack has done web developers everywhere a great service.

Mossack Fonseca provided a live demonstration of what can happen when businesses ignore the most fundamental and widely advertised web security advice: keep your site software up to date.

Security Experts have linked the so called ‘Panama Papers’ hack to outdated WordPress and Drupal software.

Whether you’re entertained or infuriated by this unfolding story, its interest for many centres around the open source software used on the websites in question.

Security breaches, hacks and big leaks are not uncommon these days. But this one is making history with its size and impact.

The victims have already started to fall. No doubt there will be a good number to follow.

And why? Security experts are saying it may all have been down to neglected software. Specifically WordPress and Drupal sites which someone failed to keep maintained and updated.

As one commentator so aptly put it:

“It turns out that not updating your WordPress plugins may result in the fall of world leaders and the largest data breach to journalists in history.”

The Panamanian law firm at the centre of this storm, Mossack Fonseca, used both WordPress and Drupal software. Their WordPress site was running a version of a plugin known to have vulnerabilities that gave an attacker access to the web server.

The well-known plugin vulnerability had been fixed in subsequent versions. Those updates had not been applied. Similar vulnerabilities were exploited in their Drupal website.

WordPress and Drupal are both open source content management systems that between them power almost one third of websites on the internet. WordPress is used by major newspapers, top 100 sites and tens of thousands of businesses around the globe.

Is there a security problem with WordPress? No. The core WordPress program is sound, regularly monitored and updated. The problem lies with the thousands of plugins and themes available from a huge variety of sources that anyone has the ability to use on their WordPress site.

It comes down to knowing who to trust and keeping those carefully chosen themes and plugins updated.

Right now, websites are being hacked and exploited. All sorts of sites, everywhere. And amazingly, despite what we all see and know, a hack like the Panama Papers will happen again.

It’s a statistical reality sustained by human nature and old fashioned ignorance.

“It will never happen to me.”

“Why would anyone bother to hack my site, it has nothing of importance?”

“My website is not as important as my actual business.”

Online security is more of a human problem than a software problem. Some people will continue to click on links with unlikely promises of wealth and happiness. Some people will continue to run websites with major security problems.

Sarah Gooding of WordPress Tavern summed it up nicely:

This leak is not a measure of open source software’s reliability but rather underscores how low a priority some companies place on their tech departments and web security. With the rampant software vulnerabilities in this age, not updating software for years constitutes abject neglect of customers.

The bottom line is that software needs to be updated. This kind of routine maintenance is as foundational to a company’s business as brushing teeth or showering is for one’s health. Law firms and companies with such a lax approach to security are either ignorant or unwilling to spend the money to maintain technology that they don’t fully understand. The Panama Papers serve as a reminder that having a competent, skilled tech department is critical for any company that deals in sensitive information.

You don’t have to be a law firm to be a target. In fact, most hackers don’t care about the content on your site. They’re keen to add your site to their network for a variety of evil purposes.

They use automated bots to scour the interwebs for any sites with outdated, vulnerable software. So mostly, it’s not humans trying to break into your site – but automated programs.

Sadly, if your site gets compromised, it will be punished by the all-seeing Google. Google doesn’t like hacked sites because people don’t like hacked sites. And as those who have had a site compromised will tell you, sometimes there is no coming back from a major breach.

There’s one big takeaway from the Panama Papers – how much is your brand worth?

The second point is – act now. If you’re not sure that everything that can be done is being done to secure your online assets, find out now.

FacebookTweetPinLinkedInEmail

Filed under: News Security WordPress

Read More:

  • Blackball
  • Croesus Track
  • Design & Creativity
  • Gallery
  • Images
  • Inspiration
  • Karamea
  • Marketing & Social Media
  • Mountain Biking
  • Nelson
  • Nelson Lakes NP
  • New Zealand
  • New Zealand Ferns
  • News
  • Security
  • SEO
  • Southern Paparoa Range
  • Taupo
  • Tongariro National Park
  • Travel
  • Video
  • West Coast
  • WordPress
Previous Post: « Peachy
Next Post: “Who’s Ruining the Internet” »

Primary Sidebar

BROWSE CATEGORIES…

  • Gallery
  • Video
  • General News
  • Travel
  • WordPress
  • Design & Creativity
  • Marketing & Social Media
  • New Zealand Ferns

Nice things clients have said…

  • a horse of course
    When I needed a new website one of my prime interests was to have a user friendly simple and straight forward site that was a pleasure to visit. Simple, Honest, and Effective. It was a pleasure to work with Rob, he interpreted well and built exactly what I imagined, plus kept me well informed throughout the process. And it works! I’m really pleased with the whole process, and look forward to working with Rob to develop the site further as the business evolves.
    The Twisting Trail
  • Awesome job on the website Rob, your patience, problem solving and technical expertise have been invaluable in producing just what we needed. There is a collective sigh of relief from the Pataka team that we now have a clean, user-friendly site to showcase what we have to offer, or as one of Pataka’s staff put it… 'Super bloody marvellous'!
    Stu Forsyth, Senior Graphic Designer – Pataka Art + Museum
  • Soulscape logo
    I can’t recommend Lifeform Labs enough. Rob has been extremely good to work with. His approach is professional, prompt, and above all helpful. He offered, and delivered, a very affordable product geared to my specific needs. Never once did I feel overawed by all the IT stuff, yet he did encourage me to grapple with some aspects of the web, which has improved my understanding immensely. If you need a web guy Rob at Lifeform Labs is your man.
    Deborah Bower – SoulScape
  • Lee Woodman
    Rob’s technical WordPress know-how has got my site up and running, but it’s his knowledge of the web that I’ve found especially useful. His advice on search engines and social media trends has helped me to develop an overall strategy – I know what I need to be doing next. Cheers Bob!
    Lee Woodman – Artist & Designer
  • Jessie Leov
    I needed a clean looking site that I could maintain and style myself – Lifeform Labs did an awesome job!
    Jessie Leov – Musician
  • WordPress Logo
    We use Lifeform for all our website work. Rob does a great job administering our websites, keeping them updated and optimised.
    Sue, Nelson
  • Susie Vokins
    Rob assisted me build my first ever business website and logo. To say I am a rookie in these sort of things would be generous. I had absolutely no idea apart from the fact that I wanted some nice photos, a certain theme and was quite clear on the logo I wanted. I can only praise Rob in all his dealings with myself and my colleagues – he was calm, informed, insightful, had great attention to detail and was always there whenever we had any questions. The result is a website and logo that I am 100% happy with created in less than 3 weeks. I cannot recommend Rob more highly.
    Susie Vokins – Susie Vokins Associates
  • logo
    Rob was great to deal with, prompt in his responses to my queries and ever willing to sort out my website problems with me, often at short notice. It was important to me that I retained some degree of control over my website and that I could learn from Rob as we went along. He was very open to this. He charged fairly and I look forward to working with him on an ongoing basis.
    Ange Palmer

Footer

WEB DESIGN & MARKETING

  • About LIFEFORM DIGITAL
  • Web Design & Development
  • WordPress Business Sites
  • E-Commerce
  • Photography & Videography
  • Search Engine Optimisation (SEO)
  • Brand & Marketing
  • Contact us

FEATURED VIDEO

  • Te Ramaroa 2021 – Church Steps
  • The Blackball Bathhouse
  • Skateseat
  • Little Pig Building Co
  • String Theory
  • Taranaki Falls – Tongariro NP

  +64 27 427 5631

LATEST FROM EL BLOGO

  • Lotus Eaters Lullaby – Exhibition by Lee Woodman – Nelson, 2022 [Video]
  • What is DNS?
  • Lotus Eaters Lullaby – Exhibition by Lee Woodman, Refinery ArtSpace, Nelson, 2022 [Images]
  • ‘Push Play’ Sound Sculpture by Lee Woodman [Video]

ECOFIND - DISCOVER PURE NZ
List your sustainable business »

All images & text Copyright © 2022 Lifeform NZ Ltd   ·  LIFEFORM DIGITAL  ·   Creative Design Studio   ·   Nelson NZ   ·   Privacy Policy   ·   Terms and Conditions

Scroll Up
Share this ArticleLike this article? Email it to a friend!

Email sent!