Did you know that out of the top 10 million websites, WordPress is used by nearly a third of all sites? It has nearly 60% market share among content management systems. The customizability and functionality of WordPress make it the preferred platform for many website owners or developers.
Unfortunately, its growing popularity also makes it a target for many hackers across the globe. Here’s an eye-opening statistic for 2018: Every minute, nearly 100,000 websites are being attacked by hackers across the globe!
Don’t panic yet, there is some good news. The Core WordPress platform is indeed very secure owing to the periodic updates released by the WordPress team. These updates contain new improvements that fix security-related vulnerabilities. Popular third party plugin and theme developers also ensure that their software is updated and in compliance with the latest WordPress version. Most of the successful hacks happen due to other issues that can be easily prevented through appropriate measures.
Let’s take a look at what issues are causing the majority of these website hacks.
Vulnerabilities that cause website hacks 1. Outdated Software
In 2018, over 60% of all hacked websites were found to be running on outdated software. This percentage has seen a significant increase in the last 3 years. By outdated software, we are referring to outdated WordPress versions, outdated plugins, and obsolete themes.
WordPress version 4.7.1 which released on December 2016, had the infamous WordPress REST API vulnerability. This was exploited by hackers to deface thousands of websites. Following this issue, WordPress version 4.7.2 was released in January 2017 to fix the security issues that were causing this vulnerability. Those website owners who upgraded to this latest version were able to avoid this security loophole. However, those who didn’t upgrade, are facing issues even now!
How can you resolve this
Keep reading this article on wparena.com