Recent news has covered information exposed by the “Panama Papers Breach“, which resulted in a huge leak of millions of emails containing financially-sensitive information. Hit hardest were world leaders and powerful people who were exposed hiding large sums of money off shore. The breach caused created a number of sticky controversies around world leaders, and is sited as the reason for the Prime Minister of Iceland’s sudden resignation.
But what does this have to do with me and my WordPress site?
A number of agencies and techies alike started to investigate about how one of the largest leaks of sensitive data occurred. WordFence.com recently posted an article detailing how the hackers most likely accessed sensitive servers through a public WordPress site with non-updated plugins, more specifically due to Slider Revolution running on an old version. “What!?!” you say, “I have Slider Revolution running on my site. Am I safe?” Keep in mind that the hackers exploited a vulnerability specifically on this high target site. The key takeaway from this is that it is crucial for you to keep all of your WordPress themes and plugins updated to the most recent versions at all times. Vulnerabilities can be found in even premium and well supported plugins, such as Revolution Slider. Best to keep all back doors shut.[su_button url=”https://www.saveda.com/services/custom-website-development/website-maintenance-support/” style=”flat” background=”#58C800″ size=”9″ center=”yes” radius=”5″ onclick=”ga(‘send’, ‘event’, ‘CTA’, ‘click’, ‘Sidebar – I’m interested’);” title=”Saveda interested clients”]Check Out Our Maintenance Plans[/su_button]
How could this happen to a large company?
This could be a case of “it happens to the best of us”. Many people and companies believe that once the website is built, then they are done fiddling with it. While WordPress is powerful allowing you to easily update your site, add features or new functionality, and comes with quality SEO structures; it is important to understand how it differs from a cluster of static HTML pages. It is connected to a database and uses PHP to dynamically render pages based on the functionality included in the theme and plugins you have chosen to install on the site. These are much more complex than an HTML page and some images. Instead, you are installing a number of mini programs to run your site. Therefore, there are frequent updates by theme and plugin developers to keep everything working well. At least, by developers who are actively maintaining their WordPress themes and plugins. And then you need to be proactive in applying those updates as they roll out. Easier said than done sometimes. Updates need to be monitored, applied – sometimes requiring additional technical knowledge, and tested as they can lead to plugin conflicts and new problems. This needs to be done with someone with good WordPress knowledge and a solid understanding of versioning and testing processes.Should I avoid the Slider Revolution plugin?
Not so. Slider Revolution is a quality premium plugin that packs a punch with a number of technically forward features, plus they support their product. I have used it on a number of websites and have been impressed by ThemePunch‘s responses and support team. Again, keep your themes and plugins updated frequently. Don’t wait until the end of the month or once a quarter to do this. That’s the takeaway.
